Tomcat 7, Valve -> Filter conversion, and container-managed authentication/authorization

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 All, Hello, I'm Chris Schultz, the maintainer of the securityfilter project (http://securityfilter.sourceforge.net/) and active member of the tomcat-user mailing list. I've been loosely following the plans for Tomcat 7 and was interested to see that

Re: Tomcat 7, Valve -> Filter conversion, and container-managed authentication/authorization

I'd be curious how many of the features in securityfilter can be done with servlet 3 (which includes the ability for an app to programatically force a login) and jaspic (jsr 196) which provides for pluggable authentication dialogs between client and server (to overly simplify it). It looks to m

Re: Tomcat 7, Valve -> Filter conversion, and container-managed authentication/authorization

On 28/04/2010 23:40, David Jencks wrote: > I'd be curious how many of the features in securityfilter can be done with > servlet 3 (which includes the ability for an app to programatically force a > login) and jaspic (jsr 196) which provides for pluggable authentication > dialogs between client a

Re: Tomcat 7, Valve -> Filter conversion, and container-managed authentication/authorization

On Apr 28, 2010, at 4:14 PM, Pid wrote: > On 28/04/2010 23:40, David Jencks wrote: >> I'd be curious how many of the features in securityfilter can be done with >> servlet 3 (which includes the ability for an app to programatically force a >> login) and jaspic (jsr 196) which provides for plugg

Re: Tomcat 7, Valve -> Filter conversion, and container-managed authentication/authorization

David, On 4/28/2010 6:40 PM, David Jencks wrote: > I'd be curious how many of the features in securityfilter can be done > with servlet 3 (which includes the ability for an app to > programatically force a login) and jaspic (jsr 196) which provides > for pluggable authentication dialogs between cl

RE: Tomcat 7, Valve -> Filter conversion, and container-managed authentication/authorization

> From: Christopher Schultz [mailto:ch...@christopherschultz.net] > Subject: Re: Tomcat 7, Valve -> Filter conversion, and container- > managed authentication/authorization > > I guess my question would be "how much of servlet 3 has been > implemented in TC7 at this poin

Re: Tomcat 7, Valve -> Filter conversion, and container-managed authentication/authorization

On Apr 29, 2010, at 9:48 AM, Caldarale, Charles R wrote: >> From: Christopher Schultz [mailto:ch...@christopherschultz.net] >> Subject: Re: Tomcat 7, Valve -> Filter conversion, and container- >> managed authentication/authorization >> >> I guess my question wo

Re: Tomcat 7, Valve -> Filter conversion, and container-managed authentication/authorization

On 29/04/2010 17:38, Christopher Schultz wrote: > David, > > On 4/28/2010 6:40 PM, David Jencks wrote: >> I'd be curious how many of the features in securityfilter can be done >> with servlet 3 (which includes the ability for an app to >> programatically force a login) and jaspic (jsr 196) which p

Re: Tomcat 7, Valve -> Filter conversion, and container-managed authentication/authorization

IMHO filters like securityfilter are the right solution for authentication, users can use them in any container and have full control over everything. It is possible to add some hooks into tomcat so that filters like this can fully replace the built-in authentication, for example using 'magic' att

Re: Tomcat 7, Valve -> Filter conversion, and container-managed authentication/authorization

On 30/04/2010, Mark Thomas wrote: > On 29/04/2010 17:38, Christopher Schultz wrote: > > David, > > > > On 4/28/2010 6:40 PM, David Jencks wrote: > >> I'd be curious how many of the features in securityfilter can be done > >> with servlet 3 (which includes the ability for an app to > >> progr