Single sign on problem
Hi all, I have two web applications which use the same JDBCRealm. I have tested the realm and it works fine. I commented out the single sign on valve in the server.xml . I tested the links from one application to another. The protected resources still ask for the login information. It would be really helpful if someone could help me out with this. I am using tomcat 5.0.29 Thanks shyam - - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Tomcat 5.0.27 - Single Sign On PROBLEM
Hi,
As the SSO docs say, it's designed to work over a set of web
applications in a *particular virtual host*. Enhancing it to work
across a cluster would be nice, but it would be exactly that: an
enhancement. What you're reporting isn't a bug, it's a limitation, and
you're free to submit enhancement patches for it. It's of course not
trivial, but possible to accomplish what you want. If you don't do it,
it might still get done, but we can't know when as it depends on whether
someone needs it or is interested in the area.
Yoav Shapira
Millennium Research Informatics
>-Original Message-
>From: Marco [mailto:[EMAIL PROTECTED]
>Sent: Thursday, September 30, 2004 10:01 AM
>To: Tomcat Users List
>Subject: Tomcat 5.0.27 - Single Sign On PROBLEM
>
>Hi,
>
>I configurated my server web to use load balancing.
>I use IIS 6 and ajp13 for this pourpose and two istance of tomcat
5.0.27
>on two different machine.
>
>Load Balancing works fine but when I configureted tomcat to use
>SingleSignOn I had some problem. Sometimes, when I pass from an
>application to another one, tomcat asks me the autentication as if
>SingleSignOn doesn't works fine.
>
>Follow tomcat and ajp13 configuration.
>
>Master machine
>.
>.
>.
>jvmRoute="master">
>.
>.
>.
>
>Slave machine
>.
>.
>.
>jvmRoute="slave">
>.
>.
>.
>
>workers2.properties
>
>[logger.file:0]
>level=DEBUG
>file=${serverRoot}/logs/iis.log
>
>[config:]
>file=${serverRoot}/bin/win32/i386/workers2.properties
>debug=1
>debugEnv=0
>
>[channel.socket:master]
>host=10.10.21.71
>port=8009
>debug=0
>tomcatId=master
>route=master
>lb_factor=50
>version=200409091010
>
>[channel.socket:slave]
>host=10.10.21.93
>port=8009
>debug=0
>lb_factor=50
>tomcatId=slave
>route=slave
>version=200409091010
>
>[channel.socket:crystal]
>host=10.10.21.71
>port=8009
>group=reportEngine
>debug=0
>
>[shm:]
>info=Scoreboard. Required for reconfiguration and status with
>multiprocess servers
>file=${serverRoot}/logs/jk2.shm
>size=100
>debug=0
>disabled=1
>
>[uriMap:]
>info=Maps the requests. Options: debug
>debug=0
>
>[workerEnv:]
>info=Global server options
>timing=1
>debug=0
>logger=logger.file:0
>
>[lb:lb]
>info=Load balancer per nostre applicazioni.
>debug=10
>stickySession=1
>
>[status:]
>info=Status worker, displays runtime informations
>
>[uri:/admin/*]
>debug=0
>worker=lb:lb
>info=Tomcat Admin
>
>[uri:/anagrafiche/*]
>debug=0
>worker=lb:lb
>info=Anagrafiche
>
>[uri:/dau/*]
>debug=0
>worker=lb:lb
>info=Main App
>
>[uri:/dg3s/*]
>debug=0
>worker=lb:lb
>info=App DG3S
>
>[uri:/ebooking/*]
>debug=0
>worker=lb:lb
>info=App E-Booking
>
>[uri:/manifesti/*]
>debug=0
>worker=lb:lb
>info=App Manifesti
>
>[uri:/manager/*]
>debug=0
>worker=lb:lb
>info=Tomcat Manager App
>
>[uri:/mp/*]
>debug=0
>worker=lb:lb
>info=App MP
>
>[uri:/crystal/*]
>debug=0
>worker=ajp13:crystal
>info=Crystal Clear
>
>thanks
>
>Marco
>
>-
>To unsubscribe, e-mail: [EMAIL PROTECTED]
>For additional commands, e-mail: [EMAIL PROTECTED]
This e-mail, including any attachments, is a confidential business communication, and
may contain information that is confidential, proprietary and/or privileged. This
e-mail is intended only for the individual(s) to whom it is addressed, and may not be
saved, copied, printed, disclosed or used by anyone else. If you are not the(an)
intended recipient, please immediately delete this e-mail from your computer system
and notify the sender. Thank you.
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Tomcat 5.0.27 - Single Sign On PROBLEM
Hi,
I configurated my server web to use load balancing.
I use IIS 6 and ajp13 for this pourpose and two istance of tomcat 5.0.27
on two different machine.
Load Balancing works fine but when I configureted tomcat to use
SingleSignOn I had some problem. Sometimes, when I pass from an
application to another one, tomcat asks me the autentication as if
SingleSignOn doesn't works fine.
Follow tomcat and ajp13 configuration.
Master machine
.
.
.
.
.
.
Slave machine
.
.
.
.
.
.
workers2.properties
[logger.file:0]
level=DEBUG
file=${serverRoot}/logs/iis.log
[config:]
file=${serverRoot}/bin/win32/i386/workers2.properties
debug=1
debugEnv=0
[channel.socket:master]
host=10.10.21.71
port=8009
debug=0
tomcatId=master
route=master
lb_factor=50
version=200409091010
[channel.socket:slave]
host=10.10.21.93
port=8009
debug=0
lb_factor=50
tomcatId=slave
route=slave
version=200409091010
[channel.socket:crystal]
host=10.10.21.71
port=8009
group=reportEngine
debug=0
[shm:]
info=Scoreboard. Required for reconfiguration and status with
multiprocess servers
file=${serverRoot}/logs/jk2.shm
size=100
debug=0
disabled=1
[uriMap:]
info=Maps the requests. Options: debug
debug=0
[workerEnv:]
info=Global server options
timing=1
debug=0
logger=logger.file:0
[lb:lb]
info=Load balancer per nostre applicazioni.
debug=10
stickySession=1
[status:]
info=Status worker, displays runtime informations
[uri:/admin/*]
debug=0
worker=lb:lb
info=Tomcat Admin
[uri:/anagrafiche/*]
debug=0
worker=lb:lb
info=Anagrafiche
[uri:/dau/*]
debug=0
worker=lb:lb
info=Main App
[uri:/dg3s/*]
debug=0
worker=lb:lb
info=App DG3S
[uri:/ebooking/*]
debug=0
worker=lb:lb
info=App E-Booking
[uri:/manifesti/*]
debug=0
worker=lb:lb
info=App Manifesti
[uri:/manager/*]
debug=0
worker=lb:lb
info=Tomcat Manager App
[uri:/mp/*]
debug=0
worker=lb:lb
info=App MP
[uri:/crystal/*]
debug=0
worker=ajp13:crystal
info=Crystal Clear
thanks
Marco
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Re: Single sign on problem!!
Hi Gabriel! But : I'm using the 4.1.24 (because of some bug in realm authentication) and i use realm with the sso and 2 servlets and it work. SSO still doesn't work for me, even on Tomcat 4.1.24 Obviously I am doing something wrong either in my configuration file or in the way I access them. If it doesn't work with that i can give you a part of my configuration in private. Can you pls send me an example of how you did it. My email id is [EMAIL PROTECTED] Thanks for your time and help!! - M - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Single sign on problem!!
Hi Gabriel! I really appreciate your help. Thanks. I will try SSO on 4.1.24 and let you know how it goes. btw, my mail id is [EMAIL PROTECTED] regards, M On Tue, 01 Apr 2003 14:29:57 +0100 > Hi ! > Thanks for UR reply. I am doing everything U were suggesting me to > (pls see my previous mail). > I know that the realm is working well, because it is authenticating > the user properly and yes, I did put that under level. > > The problem I am having is that it's asking me to re-authenticate when > I move from one webapp to another. > So, I was wondering if I have to mention the list of webapps that use > this single sign on feature somewhere...IS that so?? No. ... if yes i don't know where :). But : I'm using the 4.1.24 (because of some bug in realm authentication) and i use realm with the sso and 2 servlets and it work. If it doesn't work with that i can give you a part of my configuration in private. bye. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Single sign on problem!!
On Tue, 01 Apr 2003 14:29:57 +0100 Madhavi Thottempudi <[EMAIL PROTECTED]> wrote: > Hi ! > Thanks for UR reply. I am doing everything U were suggesting me to > (pls see my previous mail). > I know that the realm is working well, because it is authenticating > the user properly and yes, I did put that under level. > > The problem I am having is that it's asking me to re-authenticate when > I move from one webapp to another. > So, I was wondering if I have to mention the list of webapps that use > this single sign on feature somewhere...IS that so?? No. ... if yes i don't know where :). But : I'm using the 4.1.24 (because of some bug in realm authentication) and i use realm with the sso and 2 servlets and it work. If it doesn't work with that i can give you a part of my configuration in private. bye. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Single sign on problem!!
Hi ! Thanks for UR reply. I am doing everything U were suggesting me to (pls see my previous mail). I know that the realm is working well, because it is authenticating the user properly and yes, I did put that under level. The problem I am having is that it's asking me to re-authenticate when I move from one webapp to another. So, I was wondering if I have to mention the list of webapps that use this single sign on feature somewhere...IS that so?? -M Ok, I'm not sure but 1) Is your realm correctly configure?. Are you sure that your realm isn't protect only your context. Try to place your realm in the or the (The doc is good for this) test with 4.1.24 because 4.0.4 may be have some problem. Test with memory realm. 2) Try to use the SSO capabilite: http://jakarta.apache.org/tomcat/tomcat-4.1-doc/config/host.html#Single%20Sign%20On in server.xml bye bye. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Single sign on problem!!
On Tue, 01 Apr 2003 13:54:23 +0100 Madhavi Thottempudi <[EMAIL PROTECTED]> wrote: > Bringing the post up!! > > Any suggestions on this?? Please let me know...Thanks > -M Ok, I'm not sure but 1) Is your realm correctly configure?. Are you sure that your realm isn't protect only your context. Try to place your realm in the or the (The doc is good for this) test with 4.1.24 because 4.0.4 may be have some problem. Test with memory realm. 2) Try to use the SSO capabilite: http://jakarta.apache.org/tomcat/tomcat-4.1-doc/config/host.html#Single%20Sign%20On in server.xml bye bye. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Single sign on problem!!
Bringing the post up!! Any suggestions on this?? Please let me know...Thanks -M At 17:22 28/03/2003 +, you wrote: Hi there! I am trying to use "Single sign on" feature of tomcat and got stuck. My problem is - even after configuring my webapps (all running under tomcat) for single sign-on, when i change to a different app, it is asking me to authenticate again. I must be missing something that ties all these webapps, but don't know what it is. Here is what I have done - --- In server.xml: driverName="sun.jdbc.odbc.JdbcOdbcDriver" connectionURL="jdbc:odbc:singleSignOn" userTable="STUDENT" userNameCol="USERNAME" userCredCol="PASSWORD" userRoleTable="ROLES" roleNameCol="USERROLE" /> --- In web.xml of each application: Webapp safe access ... /addPackage.do /delPackage.do GET POST admin visitor author FORM xLogin.do /index.jsp --- Is there anything else I have to do??? Any help on this would be greatly appreciated. Also, can anybody point me to a place which has more information on this feature. So far, I have found only this: http://www.ingrid.org/jajakarta/tomcat/tomcat-4.0b5/src/catalina/docs/singlesignon.html Thanks. best regards, Madhavi - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Single sign on problem!!
Requesting again!!! Any suggestion on the below given problem??? btw, I am using Tomcat 4.0.4 regards, Madhavi At 17:22 28/03/2003 +, you wrote: Hi there! I am trying to use "Single sign on" feature of tomcat and got stuck. My problem is - even after configuring my webapps (all running under tomcat) for single sign-on, when i change to a different app, it is asking me to authenticate again. I must be missing something that ties all these webapps, but don't know what it is. Here is what I have done - --- In server.xml: driverName="sun.jdbc.odbc.JdbcOdbcDriver" connectionURL="jdbc:odbc:singleSignOn" userTable="STUDENT" userNameCol="USERNAME" userCredCol="PASSWORD" userRoleTable="ROLES" roleNameCol="USERROLE" /> --- In web.xml of each application: Webapp safe access ... /addPackage.do /delPackage.do GET POST admin visitor author FORM xLogin.do /index.jsp --- Is there anything else I have to do??? Any help on this would be greatly appreciated. Also, can anybody point me to a place which has more information on this feature. So far, I have found only this: http://www.ingrid.org/jajakarta/tomcat/tomcat-4.0b5/src/catalina/docs/singlesignon.html Thanks. best regards, Madhavi - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Single sign on problem!!
Hi there! I am trying to use "Single sign on" feature of tomcat and got stuck. My problem is - even after configuring my webapps (all running under tomcat) for single sign-on, when i change to a different app, it is asking me to authenticate again. I must be missing something that ties all these webapps, but don't know what it is. Here is what I have done - --- In server.xml: driverName="sun.jdbc.odbc.JdbcOdbcDriver" connectionURL="jdbc:odbc:singleSignOn" userTable="STUDENT" userNameCol="USERNAME" userCredCol="PASSWORD" userRoleTable="ROLES" roleNameCol="USERROLE" /> --- In web.xml of each application: Webapp safe access ... /addPackage.do /delPackage.do GET POST admin visitor author FORM xLogin.do /index.jsp --- Is there anything else I have to do??? Any help on this would be greatly appreciated. Also, can anybody point me to a place which has more information on this feature. So far, I have found only this: http://www.ingrid.org/jajakarta/tomcat/tomcat-4.0b5/src/catalina/docs/singlesignon.html Thanks. best regards, Madhavi - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
