Posting this again, as I did not receive a reponse the first time.
> -Original Message-
> From: Christopher Todd [mailto:[EMAIL PROTECTED]]
> Sent: Sunday, September 29, 2002 1:07 AM
> To: [EMAIL PROTECTED]
> Subject: Realm implementation question
>
>
> Please
Please forgive me if this is an obvious newbie question, but I am not a Java
guru, nor have I studied all the intricacies of Tomcat.
I am trying to implement a new Realm, which will obviously require some
configuration parameters in server.xml, and I want to make sure I understand
how to access t
I am working on a patch for Tomcat 4.x, and was wondering if there were any
requirements for supporting older versions of the JDK. Can I code up a
patch that uses classes and/or methods only available in 1.4, or do I have
to support 1.2? Can I write two versions, one that uses 1.4 APIs, and one
Is SSL client auth supported in versions of Tomcat prior to 4.x? In looking
over the source code, I can see that in TC 4.1.10,
Realm.authenticate(X509Certificate[] certs) authenticates a user based on
the certiticate chain that is presented. But in looking through the source
for TC 3.3.1, I cann
According to the Jakarta website, security problems for Jakarta projects
should be reported to [EMAIL PROTECTED]
A colleague of mine and I are researching a potential security issue in
Tomcat, and I wanted to confirm that we should use [EMAIL PROTECTED] to
report the issue, once our research is c