[Acegisecurity-developer] Is it possible to secure CGI scripts?

Hi! Is it possible to secure perl scripts that are invoked as CGI programs? Background: We have a bunch of perl scripts with an akward security solution. The perl scripts are invoked as CGI-programs from an old version of Tomcat and a Netscape server. We plan to upgrade to Tomcat 5.5. If we

Re: [Acegisecurity-developer] Wrong exeption thrown in LdapAuthenticationProvider.retrieveUser ?

There is an open JIRA for this. http://opensource2.atlassian.com/projects/spring/browse/SEC-201On 3/24/06, Bram Bruneel [EMAIL PROTECTED] wrote: Hi, Regarding: org.acegisecurity.providers.ldap.LdapAuthenticationProvider $Id: LdapAuthenticationProvider.java,v 1.5 2006/01/05 19:59:04 luke_t Exp $

Re: [Acegisecurity-developer] checking for invalid user accounts in AuthenticationProvider implementations

Heya Tim. The JaasAuthenticationProvider doesn't use UserDetails at all. It uses Jaas, and Jaas LoginModules. The JaasAuthenticationProvider essentially leaves all the can this guy login? logic up to the LoginModule, and then reacts to any LoginException that might be thrown. On 3/23/06, Tim