Vedr.: IIS + Tomcat 5.0 + NT authentication AUTH_USER
Simply put request.tomcatAuthentication=false somewhere in your jk2.properties file. /Thomas Jason Wilson [EMAIL PROTECTED] 08-01-04 18:54 Besvar venligst til Tomcat Users List Til:[EMAIL PROTECTED] cc: Vedr.: IIS + Tomcat 5.0 + NT authentication AUTH_USER Hi, I'm using Tomcat 5.0.16 connector-jk-2.0.2-win32-iis IIS 5.0 Currently my application is running under IIS + ColdFusion(Jrun), but will be migrating to a IIS/Tomcat server. Since this is an intranet application on an NT network, where it is a requirement to have the users not have to implicitly logon, I am using NT authentication with IIS. In other words, for the virtual directory, I have set the Anonomous access off, and Integrated Windows Authenticated on. In the IIS + ColdFusion setup, my servlet does a request.getHeader(AUTH_USER); and this returns the domain/userid of the person logged into the client machine. Then I can verify the user is allowed to use the application. All is well. However, in the IIS + Tomcat setup, getHeader(AUTH_USER) is returning null. I have tried other header keys and get null also. Also, I am sure IIS is authenticating the user, since I cannot get to the application using a browser that doesn't support the windows authentication. So, it appears, for some reason, the connector is not setting the AUTH_USER header when it transfers to the Tomcat container. Does anyone know how I can fix this so it does, or if there is anything I might be doing wrong. Thanks in advance, Jason __ Do you Yahoo!? Yahoo! Hotjobs: Enter the Signing Bonus Sweepstakes http://hotjobs.sweepstakes.yahoo.com/signingbonus - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] FONT SIZE=1 FACE=Arial___ Vi gør opmærksom på, at denne e-mail kan indeholde fortrolig information. Hvis du ved en fejltagelse modtager e-mailen, beder vi dig venligst informere afsender om fejlen ved at bruge svar-funktionen. Samtidig beder vi dig slette e-mailen i dit system uden at videresende eller kopiere den. Selv om e-mailen og ethvert vedhæftet bilag efter vores overbevisning er fri for virus og andre fejl, som kan påvirke computeren eller it-systemet, hvori den modtages og læses, åbnes den på modtagerens eget ansvar. Vi påtager os ikke noget ansvar for tab og skade, som er opstået i forbindelse med at modtage og bruge e-mailen. ___ Please note that this message may contain confidential information. If you have received this message by mistake, please inform the sender of the mistake by sending a reply, then delete the message from your system without making, distributing or retaining any copies of it. Although we believe that the message and any attachments are free from viruses and other errors that might affect the computer or IT system where it is received and read, the recipient opens the message at his or her own risk. We assume no responsibility for any loss or damage arising from the receipt or use of this message. /FONT
Re: IIS + Tomcat 5.0 + NT authentication AUTH_USER
Sorry, don't know where i found this anymore. The jk2 docs are out of date. but its definitely in the source code. some links: http://cvs.apache.org/viewcvs.cgi/jakarta-tomcat-connectors/jk/native2/server/isapi/isapi_redirector2.reg?rev=1.5hideattic=0view=markup http://cvs.apache.org/viewcvs.cgi/jakarta-tomcat-connectors/jk/native2/server/isapi/jk_isapi_plugin.c?rev=1.57view=markup (11 month old) Why not give it a try? Jason Wilson wrote: Hi, I appreciate the info. Could you please point me to the documentation where you found this information, preferably some official documentation on the apache site, perhaps? Thanks, Jason --- Daniel Schmitt [EMAIL PROTECTED] wrote: There is an registry entry [HKEY_LOCAL_MACHINE\SOFTWARE\Apache Software Foundation\Jakarta Isapi Redirector\2.0] authComplete=0 which toggles authentication handled by tomcat or iis. just an idea -- Daniel Schmitt http://www.shiftomat.com -- Daniel Schmitt http://www.shiftomat.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
IIS + Tomcat 5.0 + NT authentication AUTH_USER
Hi, I'm using Tomcat 5.0.16 connector-jk-2.0.2-win32-iis IIS 5.0 Currently my application is running under IIS + ColdFusion(Jrun), but will be migrating to a IIS/Tomcat server. Since this is an intranet application on an NT network, where it is a requirement to have the users not have to implicitly logon, I am using NT authentication with IIS. In other words, for the virtual directory, I have set the Anonomous access off, and Integrated Windows Authenticated on. In the IIS + ColdFusion setup, my servlet does a request.getHeader(AUTH_USER); and this returns the domain/userid of the person logged into the client machine. Then I can verify the user is allowed to use the application. All is well. However, in the IIS + Tomcat setup, getHeader(AUTH_USER) is returning null. I have tried other header keys and get null also. Also, I am sure IIS is authenticating the user, since I cannot get to the application using a browser that doesn't support the windows authentication. So, it appears, for some reason, the connector is not setting the AUTH_USER header when it transfers to the Tomcat container. Does anyone know how I can fix this so it does, or if there is anything I might be doing wrong. Thanks in advance, Jason __ Do you Yahoo!? Yahoo! Hotjobs: Enter the Signing Bonus Sweepstakes http://hotjobs.sweepstakes.yahoo.com/signingbonus - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: IIS + Tomcat 5.0 + NT authentication AUTH_USER
There is an registry entry [HKEY_LOCAL_MACHINE\SOFTWARE\Apache Software Foundation\Jakarta Isapi Redirector\2.0] authComplete=0 which toggles authentication handled by tomcat or iis. just an idea -- Daniel Schmitt http://www.shiftomat.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: IIS + Tomcat 5.0 + NT authentication AUTH_USER
Hi, I appreciate the info. Could you please point me to the documentation where you found this information, preferably some official documentation on the apache site, perhaps? Thanks, Jason --- Daniel Schmitt [EMAIL PROTECTED] wrote: There is an registry entry [HKEY_LOCAL_MACHINE\SOFTWARE\Apache Software Foundation\Jakarta Isapi Redirector\2.0] authComplete=0 which toggles authentication handled by tomcat or iis. just an idea -- Daniel Schmitt http://www.shiftomat.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] __ Do you Yahoo!? Yahoo! Hotjobs: Enter the Signing Bonus Sweepstakes http://hotjobs.sweepstakes.yahoo.com/signingbonus - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: IIS + Tomcat 5.0 + NT authentication AUTH_USER
See if request.getHeader(Authorization) gives you anything. That is what I have been using with IIS and Tomcat 4.X. The data is Base64 encoded, but I have some code to grab the username and password from that if you need it. -Brian -Original Message- From: Jason Wilson [mailto:[EMAIL PROTECTED] Sent: Thursday, January 08, 2004 12:54 PM To: [EMAIL PROTECTED] Subject: IIS + Tomcat 5.0 + NT authentication AUTH_USER Hi, I'm using Tomcat 5.0.16 connector-jk-2.0.2-win32-iis IIS 5.0 Currently my application is running under IIS + ColdFusion(Jrun), but will be migrating to a IIS/Tomcat server. Since this is an intranet application on an NT network, where it is a requirement to have the users not have to implicitly logon, I am using NT authentication with IIS. In other words, for the virtual directory, I have set the Anonomous access off, and Integrated Windows Authenticated on. In the IIS + ColdFusion setup, my servlet does a request.getHeader(AUTH_USER); and this returns the domain/userid of the person logged into the client machine. Then I can verify the user is allowed to use the application. All is well. However, in the IIS + Tomcat setup, getHeader(AUTH_USER) is returning null. I have tried other header keys and get null also. Also, I am sure IIS is authenticating the user, since I cannot get to the application using a browser that doesn't support the windows authentication. So, it appears, for some reason, the connector is not setting the AUTH_USER header when it transfers to the Tomcat container. Does anyone know how I can fix this so it does, or if there is anything I might be doing wrong. Thanks in advance, Jason __ Do you Yahoo!? Yahoo! Hotjobs: Enter the Signing Bonus Sweepstakes http://hotjobs.sweepstakes.yahoo.com/signingbonus - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Tomcat and NT Authentication
Can someone please point me in the right direction for integratin NT authentication with my application running on Tomcat? I am working on a government project that requires that users be authenticated against their domain. When a user tries to access the web application at, for example, www.mysite.com, they need to be prompted for a domain login. Thanks in advance, Mark Gregory Turansky Web Engineer [EMAIL PROTECTED] www.keymind.com 5111 Leesburg Pike, Suite 703 Falls Church, VA 22041 Tel. 703.379.2060 x450 Fax.703.379.6328 - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Tomcat and NT Authentication
http://jakarta.apache.org/tomcat/faq/windows.html#ntlm -Tim Turansky, Mark wrote: Can someone please point me in the right direction for integratin NT authentication with my application running on Tomcat? I am working on a government project that requires that users be authenticated against their domain. When a user tries to access the web application at, for example, www.mysite.com, they need to be prompted for a domain login. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Tomcat and NT Authentication
Thanks, and I should have gone and read the FAQ *before* posting mark -Original Message- From: Tim Funk [mailto:[EMAIL PROTECTED] Sent: Thursday, October 09, 2003 11:18 AM To: Tomcat Users List Subject: Re: Tomcat and NT Authentication http://jakarta.apache.org/tomcat/faq/windows.html#ntlm -Tim Turansky, Mark wrote: Can someone please point me in the right direction for integratin NT authentication with my application running on Tomcat? I am working on a government project that requires that users be authenticated against their domain. When a user tries to access the web application at, for example, www.mysite.com, they need to be prompted for a domain login. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]