always check the reference implementation -- Tomcat 4.1.29 standalone
returns the same values for these functions regardless of whether
invoked in the context of a secured or
That's funny. I remember a long time back, I complained to the
Tomcat team about the same issue. Their reply
Thanks for the informative post on your experience w/ Hibernate :-)
Is there any part of your web site that you can see it in action?
Looks like you actually have to log in to see anything.
Also, it looks like you're using Java Server Faces pages already?
Any comments on how you like it
James Higginbotham [EMAIL PROTECTED] writes:
and it took me all of 2 min to create an email rule to chunk these
emails from the various lists I've been seeing them on, until the list
hosts can get around these wonderful worm issues. Worth a shot for a
At least you're not in Digest mode.
We hired Remy Maucherat the lead developer of Tomcat 5 on Monday
Sounds like this will be an eventuality.
I'm also curious how Tomcat5 compares w/ Jetty in terms
of speed/robustness. I've heard a lot about how Jetty is
much faster than Tomcat4, but have used Tomcat4 because it
seems to be
snpe [EMAIL PROTECTED] writes:
Complete output is in attach (11k in bz2 format)
1) don't *ever* send attachments into a mailing list (sorry...I
admin a few lists and this is one of my pet peeves and I banned
it at the list server level). All listers will see is a bunch of
garbage ASCII text
2)
Still exploring DR1, but just wanted to let you folks that are still
on 3.x that it uses more memory. Seems like JMS is now a standard
part of the default server in 4.0 DR1 whereas it was part of the
all config in 3.x.
ken
p.s., my custom authenticator is broken in 4.0 DR1...looks like
you
Sacha Labourey wrote:
JMS was part of default in 3.x
Thanks. I thought it was part of all.
Any idea why JBoss 4.0 DR1 uses more memory? Is it from the AOP
stuff? I can't say JBoss is a lot less piggy than WAS now :-)
ken
___
Join Excite! -
snpe [EMAIL PROTECTED] wrote:
I try JBoss 4.0 (cvs 04.06.2003) and build with tomcat 4.1.24.
When JBoss start it have a lot errors in log output
You should only get an exception the first time you run it
(something is dropping database tables that don't exist).
I only get a few warnings that
In case any of you missed it :-)
http://www.theinquirer.net/?article=9813
http://www.theinquirer.net/?article=9850
ken
___
Join Excite! - http://www.excite.com
The most personalized portal on the Web!
snpe [EMAIL PROTECTED] wrote:
can see file (return from list) on linux with kmail
Try switching your list subscription to digest mode.
Attachments and any rich text formatting (this includes most
Outlook users or anything that sends MIME/HTML) looks like
garbage text :-P
WARN
Anyone know when the download for a JBoss/Tomcat 4.0 package will be
available on JBoss' site? There is a link to download it in the
news section, but clicking it brings you to the JBoss 4.0 Vision
page. Nothing on the Downloads page either...only 3.0 and 3.2.
BTW, someone should run the JBoss
Jason Stortz wrote:
You can get it from the jboss project at http://www.sourceforge.net
Thanks, Jason. Didn't think to look there because I thought you'd
have to build the code from CVS :-)
Even the PDF news blurb on jboss.org mentions that you can download
4.0 from jboss.org...
ken
After I found out JBoss 4.0 is getting released on Monday, I read
up on AOP a bit since that seemed like one of the biggest features.
The AOP logging example on the JBoss site looked like a perfect
way to add logging if you wanted to debug call traces.
Has anyone tried benchmarking AOP vs. J2EE
--- On Tue 05/27, Miroslav Nachev [EMAIL PROTECTED] wrote:
If the application is developed to serve more than one organization
You have a custom login page with a bit more info: the org.
Because of this, your user's login validation info is actually
composed of 3 pieces of info:
Neal Sanche [EMAIL PROTECTED] writes:
Well, I've not actually tried using a servlet to do a POST to the
login page. In my old company, an applet was doing the POST, and the
I've done posts from applets to upload files before too...just
didn't think this would work for automatic login because
Simone Milani [EMAIL PROTECTED] writes:
I think what Tomcat does after a post to j_security_check is look
inside theser session (private to the container -
org.apache.catalina.Session) for anttribute containing the
original page that the user was trying to access.
If it cannot find it
FYI, this technique doesn't work:
copy code out of JBossSecurityMgrRealm for login and stick in
servlet that is not restricted w/ declarative security
log in using this code, set REMOTE_USER header and set
j_subject to be the Subject in the session
in case anyone else heads down this
Hmm...now that's an interesting workaround. Better than
my hack of mucking w/ the REMOTE_USER header and no ties to
a specific web container Valve/Interceptor/Filter implementation.
Only possible caveat is that you need to be able to look up the
username/password from the automatic login
FYI, if you access your form based login page (mine is called login.jsp)
directly from a browser, you can submit it and Tomcat/JBoss complains
that Invalid direct reference to form login page but the user is
still logged in (I can access a restricted URL w/o a login prompt),
so it looks like that
I'm still trying to figure out how to do autologin into JBoss
declarative security using a persistent cookie :-)
Would anyone happen to know where the source code for the decision
of whether or not a user is logged in is? I'm looking for the
code point just before it puts up the
Found JBossSecurityMgrRealm in the contrib module:
http://cvs.sourceforge.net/cgi-bin/viewcvs.cgi/jboss/contrib/tomcat41/src/main/org/jboss/web/catalina/security/
___
Join Excite! - http://www.excite.com
The most personalized portal on the Web!
Could folks who post to the list please turn off HTML/MIME mail?
It totally garbles mail for those of us who are in digest mode :-(
thanks,
ken
___
Join Excite! - http://www.excite.com
The most personalized portal on the Web!
Rod Macpherson [EMAIL PROTECTED] wrote:
The cookies will be in the request header so if you have access to the
request in the custom login then a call to getCookies otta work fine.
That's just it, I don't have access to the cookies in the custom
login module. Ideally, the HTTP request object
Well...after a bit of digging, I found that iTracker does *NOT* use
container-based security. You can tell by looking at ejb-jar.xml
where you won't find any security tags.
What it does is let any EJB methods be called by anyone. Ditto
with all servlets. It uses a classic Guard pattern by
No luck digging in the archives for this list or on the security
forum on jboss.org.
Has anyone done the feature you find in a lot of web sites where
you can click a checkbox next to your login info and a cookie is
stored to automatically log you in the next time you visit the
site?
Somehow, it
25 matches
Mail list logo
