Hello!
I have another useful information about this problem...
The version of Tomcat I have is 4.0.4b3: is it possible
that this beta release contains some bug that doesn't
let Tomcat to support correctly BASIC authentication
(when it is used as Servlet Container and not in standalone
Hello!
I have another useful information about the problem described below that I
have
posted some day ago wihout receiving no solution for it :(((
If I use Tomcat 4.x as Web Server (standalone mode), instead of
IIS, the BASIC Authentication works well also on Server 1!
This means there must be
Hello everybody!
I have the following GREAT problem with basic authentication in Tomcat
I have two servers configured as follows:
Server 1:
Operating system: Windows 2000 Advanced Server
Web Server: IIS 5.0
Servlet Container: Tomcat 4.x
Server 2: Windows XP Professional
Web Server: IIS
Hello everybody!
I have the following GREAT problem with basic authentication in Tomcat
I have two servers configured as follows:
Server 1:
Operating system: Windows 2000 Advanced Server
Web Server: IIS 5.0
Servlet Container: Tomcat 4.x
Server 2: Windows XP Professional
Web Server: IIS
Is it possible to authenticate to an webapp only by login on Windows NT? (I´m aware of
the exclusive use of MS Internet Explorer, because this browser sends the user
information in the header of a request.) Is it possible to process this data by
Tomcat, so that a user doesn´t need to login a sec
Hi,
I configured my TomCat to enable basic authentication on one of my context.
When accessing the servlet via the TomCat webserver (port 8080) the
authentication works fine.
Then I configured an IIS server to filter the http requests with the
isapi_redirect.dll.
Now when trying to access the
direct reference to form login page].
Which makes sense, I guess it is submitting it back and the URL shows
[http://localhost/altercast/j_security_check]
How do I forward the user to a good login page, if they pass the basic authentication?
My page is /loginpage.html
// here it is
We are currently using Tomcat 4.1.12. We are doing virtual hosting
and install the /manager for each virt host. It all looks something
like :
We are using the JDBC realm to authenticate users through mysql and
this is working well. The problem is that there do
om my Web
> Browser and decrypted by ISS before redirecting them to Tomcat 4.x
> (I haven't installed the same digital certificate in Tomcat because
> I don't use it as a Web Server)?
Yes.
>
> Then I need to know:
>
> 2)I want to protect some servlets and jsp-pages
want to protect some servlets and jsp-pages with an access login and
password:
So I used the BASIC authentication of Tomcat: in this way when I user
try to connect to a protected servlet or jsp-page the Servlet Container
Tomcat asks to
the user to insert a login and a password. If the url of the serv
Hello everybody,
I have an authentication problem using Jakarta Tomcat 3.3.1 and I don´t know
how to solve it. My context is the following:
- There are two roles on my Web application (admin and contentprovider):
services.admin
Im not sure what you mean by BASIC/Form based authentication but if your
looking for an LDAP compliant API look into JNDI
http://java.sun.com/products/jndi/ or into Novells LDAP Classes for Java
http://developer.novell.com/ndk/doc/jldap/index.html?page=/ndk/doc/jldap
/jldapenu/data/a9032ak.html
If you look at the JNDI Realm Howto it will tell you how to do this.
Regards
Jim.
> -Original Message-
> From: Fred So [mailto:[EMAIL PROTECTED]]
> Sent: 16 October 2002 15:31
> To: [EMAIL PROTECTED]
> Subject: LDAP Authentication
>
>
> Hi All
>
> Has a
Hi All
Has anyone successfully implemented BASIC/Form-based
authentication against an LDAP data source?
Are there any external libraries available and what
are the configuration settings?
Thanks in advance
F
__
Do you Yahoo!?
Faith Hill
Shouldnt the url format be http://url?user=xxx&password=xxx ? Also, if
you do this, you could encrypt the password it before calling
sendRedirect and decrypt it at the url cgi.
-- padhu
Rajesh Kanderi wrote:
>how do you access a webpage which has a form-based
>authentication s
how do you access a webpage which has a form-based
authentication setup using java.
i am able to do it using an href
http://:@url...
but the problem is it shows the passowrd.
I tried to construct the above url in a servlet and
then doing a sendRedirect. but the sendRedirect
doesn't se
Externo wrote:
> Sorry by my English.
>
> How I can guess login and password strings of an user, from error page (JSP)
> using "Form Based Authentication of Tomcat"?
>
> I need know it to lock the count each 3 error tries (if login is ok but
> password is
try setting tomcatAuthentication="false" on the Ajp13Interceptor in the
server.xml file if you want use the web server's authentication.
_James
On Fri, 4 Oct 2002, Paul Tomsic wrote:
> Has anyone does this successfully?
>
> I am able to successfully have Apache authent
set tomcatAuthentication=false in your ajp connector xml.
Then it should recognize the apache authorized user.
Worked for us.
-Dennis
On Fri, 2002-10-04 at 12:36, Paul Tomsic wrote:
> Has anyone does this successfully?
>
> I am able to successfully have Apache authenticate
> against a AuthDB
Sorry by my English.
How I can guess login and password strings of an user, from error page (JSP)
using "Form Based Authentication of Tomcat"?
I need know it to lock the count each 3 error tries (if login is ok but
password is bad, insteed).
Methods 'getRemoteUser'
Has anyone does this successfully?
I am able to successfully have Apache authenticate
against a AuthDB file (configured w/ the mod_auth_db)
and I'm able to have Tomcat handle *.jsp files
successfully, but when I try to
request.getRemoteUser()
It gives me a NULL
any thoughts on this? Is there
Hello,
I am working on a project that uses Tomcat (with JBoss) and Apache Struts.
User authentication needs to support a "Single Sign On" feature which
displays a login screen (UserID/Password) if the user is hitting the
application directly or it should accept a URL from another a
We have Tomcat 4.1.10 running behind IIS using ajp13 redirector. There are
protected resources in the app., thus we use security-constraints in web.xml
and FORM based authentication.
Everything works well while IIS is configured in non-SSL mode (i.e.
http://...) - the application sends back
On Thu, Sep 19, 2002 at 02:10:58PM -0400, Alvin Wang wrote:
> Or thinking the other way around, if we use tomcat to do the authentication,
> is there a way that we can prevent IIS from loading some document until
> login has been authenticated by tomcat?
Only have the sensitive stuff
Hi! We plan to integrate tomcat with IIS. As I read, we can use JK2. Also we
want IIS to do the authentication. However, tomcat servlet session also need
the user login information (username...). So is there a way for tomcat to
share (or retrieve) the authentication information with IIS?
Or
about the error. Then you can forward() or
"whatever" based on your business logic.
Jeff Wishnie wrote:
>I am using FORM authentication in my web-app, hosted in Tomcat 4.1.10
>
>I want to vary the contents of the login screen depending on what resource was
>requested.
&
I am using FORM authentication in my web-app, hosted in Tomcat 4.1.10
I want to vary the contents of the login screen depending on what resource was
requested.
I have configured a servlet as the form-login-page so that I can forward the request
to any number of appropriate login pages. But
To: Tomcat Users List
> Subject: Re: Apache authentication info failed to pass to Tomcat 4.0.>3
>
>
> The Coyote connector is broken in this respect.
>
> Remmy recently fixed it in CVS post Tomcat-4.1.10. Grab a nightly build
> and use the coyote jar files from there.
>
The Coyote connector is broken in this respect.
Remmy recently fixed it in CVS post Tomcat-4.1.10. Grab a nightly build
and use the coyote jar files from there.
Jake
At 08:14 AM 9/12/2002 -0400, you wrote:
>Hi all,
>
>I configured Apache to use basic authentication and tried to
Hi all,
I configured Apache to use basic authentication and tried to pass the
successful authentication info to Tomcat through AJP13 connector. This
approach works great in Apache 1.3.26 with Tomcat 4.0.3, failes with Tomcat
4.0.4, 4.1.10. Tomcat 4.1.10's AJP13 connector and Coyote conn
Sent: 10 September 2002 14:46
To: 'Tomcat Users List'
Subject: RE: How to get logon name in Real Authentication
Try the java documentation on
http://java.sun.com/j2ee/sdk_1.3/techdocs/api/index.html It has been
reported as being of help sometimes ;-)
I'm using
request.
est.
greetings
Andreas Mohrig
-Original Message-
From: Howard Miller [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 10, 2002 3:42 PM
To: '[EMAIL PROTECTED]'
Subject: How to get logon name in Real Authentication
Hi,
I know I'm going to be given hell here, but can find
Hi,
I know I'm going to be given hell here, but can find no information on
this
I have JDBC Realm authentication using Form-Based type login. All works
fine.
Now, how can I get the login name that the user has used. How do I tell in a
bean or whatever (well, I'm using STRUTS), wh
Hi List,
I have run in to a problem that I can't track down. In my intranet application I
can't get a servlet to retreive any file system objects that do not have read-only
access for everyone even though the same code allows me to access these objects using
the same JVM on the same machin
Hello,
I want to use form based login so I understand the action needs to be
j_security_check and I need to have a form-login-config in my web.xml.
However my application has a login page on pretty much every page on the
site - the form is an include.
So do I need to write a form-login-config
Hi,
I've run into a bit of a stumbling block attempting to configure a
and associated in /etc/tomcat4/server.xml
for web based NIS authentication using JAAS's
com.sun.security.auth.module.JndiLoginModule.
I have written a Principal and CallbackHandler class as well as the
configur
; /errors/401.html
>
>
>in web.xml will not work. If you put that in web.xml, it will deny all
>authorization.
>
>The thing to do is to create a filter for the resources you want to
>protect. Do the conventional basic authentication in the filter.
>However, h
to
protect. Do the conventional basic authentication in the filter.
However, here is the part which is different:
String errorFile = "/errors/401.html";
response.addHeader("WWW-Authenticate", "BASIC realm=\"" + realm
On Thu, 2002-09-05 at 13:55, Eric Hollander wrote:
> I did some more research on this. It looks like it was a Known Bug in
> Tomcat 4.0.2, and it doesn't look like it has been fixed since then (I'm
> using 4.0.4). Tomcat developers, is there any patch or workaround known
> for this?
>
> I did s
to change or work around this behavior? Surely there is
> a way to display a custom 401 error page and still have basic
> authentication work?
--
To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
it's an error, and then displays the error page resource.
Is there a way to change or work around this behavior? Surely there is
a way to display a custom 401 error page and still have basic
authentication work?
Thanks for any tips.
--
To unsubscribe, e-mail: <mailto:[EMAIL PROTECT
Please can someone help me, i have read though the achieves and have found simaliar
question but no answers.
i am running tomcat 4.0.3 with IIS 5 i have configured a jsp page with tomcat basic
authentication.
when i acces the page tomcat does not ask for username and password it passes
Search the archive. The short answers are below.
Andreas Schildbach wrote:
>Hello!
>
>I am using Container Based Security with the Tomcat 4.1.9 beta.
>Current I have Form based Authentication configured.
>
>I'd like to allow the user to authenticate before he tries to
Hello!
I am using Container Based Security with the Tomcat 4.1.9 beta.
Current I have Form based Authentication configured.
I'd like to allow the user to authenticate before he tries to access a
resource that is protected by security contraints in web.xml.
==> Is it possible for a Ser
On Thu, 29 Aug 2002, Per Kreipke wrote:
> Date: Thu, 29 Aug 2002 15:16:13 -0400
> From: Per Kreipke <[EMAIL PROTECTED]>
> Reply-To: Tomcat Users List <[EMAIL PROTECTED]>
> To: Tomcat Users List <[EMAIL PROTECTED]>
> Subject: RE: [Q] WebDAV servlet authentic
> > Does anyone know whether the webdav servlet can use form based
> > authentication when the client is not a browser (e.g. DAVExplorer or Web
> > Folders)?
> >
>
> Isn't this really a question of whether your *client* can understand how
> to interact usin
On Thu, 29 Aug 2002, Per Kreipke wrote:
> Date: Thu, 29 Aug 2002 08:58:33 -0400
> From: Per Kreipke <[EMAIL PROTECTED]>
> Reply-To: Tomcat Users List <[EMAIL PROTECTED]>
> To: [EMAIL PROTECTED]
> Subject: [Q] WebDAV servlet authentication...
>
> Does anyone kn
Does anyone know whether the webdav servlet can use form based
authentication when the client is not a browser (e.g. DAVExplorer or Web
Folders)?
If not, can one configure single sign on to use form based authentication on
some resources and BASIC on others?
The impetus for my question is the
the way. My current
implementation is storing in the session variable the value of the http
parameters, and re-attaching them when the second stage of the
authentication is completed, but I guess that the referrer header is not
'correct' (in that is is no longer the page that caused the
On Wed, 28 Aug 2002, Mike Skells wrote:
> Date: Wed, 28 Aug 2002 19:21:49 +0100
> From: Mike Skells <[EMAIL PROTECTED]>
> Reply-To: Tomcat Users List <[EMAIL PROTECTED]>
> To: 'Tomcat Users List' <[EMAIL PROTECTED]>
> Subject: Extended authenticati
Hi,
I am developing an application where there is a need for extended
authentication, in addition to that of usernam/password, some additional
challenge/response
Is there any way to protect a web app so that the extra parameters can
be prompted for in a 'standard' way
I know that
Hi,
I have an installation of Tomcat and IIS combo, using AJP and isapi_redirect.dll.
This setup works fine.
Anyway, I have a virtual directory mapped in IIS under one of the hosts, that has only
Windows Intergrated Authentication security, which means the user must be apart of the
nt
A JAASRealm allows you to take advantage of JAAS. I'm not sure if
anyone has it working with NT yet.
- Andrew
> -Original Message-
> From: Herbert Chau [mailto:[EMAIL PROTECTED]]
> Sent: Monday, August 19, 2002 11:10 PM
> To: Tomcat Users List
> Subject: authent
Dear all,
Is that away in tomcat that I can authenticate people against the NT domain without
using Apache?
Best regards,
Herbert Chau
Analyst
SAS Institute Ltd
[EMAIL PROTECTED]
TEL: 852-2105-3512
FAX: 852-2568-7218
www.sas.com/hongkong
SAS... The Power to Know
The information contained
The application we are working on is laid out on the network like so (*
means many):
Apache2
Tomcat4 Web Site Servers*
Tomcat4 File Servers*
Basically the application acts much like sourceforge or another download
site, but I would like to carry authentication from the Web site server
to the
at/conf/jk/workers.properties"
JkLogFile "/opt/tomcat/logs/mod_jk.log"
JkLogLevel info
JkMount /examples/* ajp13
JkMount /protected/* test
It appears if I change the first connector in my server.xml file so that
tomcat authentication is set to true, my protected page works. Otherwise, i
at/conf/jk/workers.properties"
JkLogFile "/opt/tomcat/logs/mod_jk.log"
JkLogLevel info
JkMount /examples/* ajp13
JkMount /protected/* test
It appears if I change the first connector in my server.xml file so that
tomcat authentication is set to true, my protected page works. Otherwise, i
at/conf/jk/workers.properties"
JkLogFile "/opt/tomcat/logs/mod_jk.log"
JkLogLevel info
JkMount /examples/* ajp13
JkMount /protected/* test
It appears if I change the first connector in my server.xml file so that
tomcat authentication is set to true, my protected page works. Otherwise, i
st 13, 2002 12:38 PM
To: 'Tomcat Users List'
Subject: RE: REPOST: Authentication: Use Tomcat and Apache
Does putting it under a different service name work?
-Original Message-
From: Kevin Andryc [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, August 13, 2002 12:16 PM
To: [EMAIL PRO
ps
-reynir
> -Original Message-
> From: Koes, Derrick [mailto:[EMAIL PROTECTED]]
> Sent: 13. ágúst 2002 16:38
> To: 'Tomcat Users List'
> Subject: RE: REPOST: Authentication: Use Tomcat and Apache
>
>
>
> Does putting it under a different service na
Does putting it under a different service name work?
-Original Message-
From: Kevin Andryc [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, August 13, 2002 12:16 PM
To: [EMAIL PROTECTED]
Subject: REPOST: Authentication: Use Tomcat and Apache
I have an application that currently uses Apache&#
I have an application that currently uses Apache's authentication. In order
for this to work with Tomcat I had to specify it in my server.xml, like so:
I also have another application running under Tomcat that I would like
Tomcat to handle the authentication. Is there a way to have
ation attribute
on the AJP connector is misleading.
-Original Message-
From: Jacob Kjome [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, August 13, 2002 10:07 AM
To: Tomcat Users List
Subject: RE: Can authentication to webapps be controlled by Apache HTTPD s
erve r rather than tomcat?
Mak
August 13, 2002 10:07 AM
To: Tomcat Users List
Subject: RE: Can authentication to webapps be controlled by Apache HTTPD s
erve r rather than tomcat?
Make sure that you don't have any stuff set up in
your web.xml for your app. You either need to handle everything at the
Apache level or let
, August 13, 2002 9:33 AM
>To: Tomcat Users List
>Subject: Re: Can authentication to webapps be controlled by Apache HTTPD
>serve r rather than tomcat?
>
>
>Yes, but you have to add tomcatAuthentication="false" to your ajp13
>connector in server.xml. Also, this d
I've asked that question a number of time before with no real response from
the Tomcat developers except for Ignacio Ortega saying that he would look
into it. That was a while ago and I have seen any changes since then.
So, Tomcat developers. Why does tomcatAuthentication="false" no work with
The auth seems to work through apache with this setting, but tomcat still
gives me the 403 error page.
-Original Message-
From: Jacob Kjome [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, August 13, 2002 9:33 AM
To: Tomcat Users List
Subject: Re: Can authentication to webapps be controlled
Do you have any reason as to why it works with the ajp13 connector but not
coyote. I would prefer to use coyote for the Mbean stuff.
Thanks,
Frank
On Tue, 13 Aug 2002, Jacob Kjome wrote:
>
> Yes, but you have to add tomcatAuthentication="false" to your ajp13
> connector in server.xml. Also,
Yes, but you have to add tomcatAuthentication="false" to your ajp13
connector in server.xml. Also, this doesn't seem to work with the Coyote
connector, only with the normal ajp13. connector.
Once you've done this, do your athentication through Apache and use
request.getRemoteUser() to get th
I put this in my httpd.conf file:
AuthType Basic
AuthName "protected area"
AuthUserFile "C:/Program Files/Apache Group/users"
require user koes
I get the browser authentication popup and I enter the username and password
that is in my AuthUser
I have an application that currently uses Apache's authentication. In order
for this to work with Tomcat I had to specify it in my server.xml, like so:
I also have another application running under Tomcat that I would like
Tomcat to handle the authentication. Is there a way to have
e got you classes written I could
help you more.
-Original Message-
From: Guillermo Payet [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, August 07, 2002 12:47 PM
To: [EMAIL PROTECTED]
Subject: Forcing authentication
Hi,
I've asked this one before, but got no answers, so here goes
I have an application that currently uses Apache's authentication. In order
for this to work with Tomcat I had to specify it in my server.xml, like so:
I also have another application running under Tomcat that I would like
Tomcat to handle the authentication. Is there a way to have
ut got no answers, so here goes an
> > "abridged" version.
> >
> > I'd like to "force" a FORM authentication by somehow calling
> > /login/j_security_check from a jsp page, or doing something
> > equivalent, so that the application can decide to
es/a/webapps/intranet2
>
> etc...
>
> So how could I use the tag and not affect the other Virtual
> hosts. I simply want to force authentication for the virtual host
> "intranet1" only. I figured adding a tag for
> "/drives/a/webapps/intranet1" would do it,
Virtual
hosts. I simply want to force authentication for the virtual host
"intranet1" only. I figured adding a tag for
"/drives/a/webapps/intranet1" would do it, but it doesn't.
Suggestions?
--
Josh
> -Original Message-
> From: Milt Epstein [mailto:[EMAIL PROTE
; To: Tomcat Users List
> Subject: Apache Authentication for Tomcat
>
>
>
> This is an addition to a thread from a day or two ago. I didn't pay
> much attention to it then, because it wasn't something I needed to
> worry about -- but things change quickly, and now
tions from Jacob Kjome and John Turner (and others). Josh was
having some trouble trying to get Apache to handle authentication on
some resources that were to be handled by Tomcat. Here is one of the
later messages in the thread from Jacob Kjome:
http://marc.theaimsgroup.com/?l=tomcat-user&m=10280
On Tue, 30 Jul 2002, Michael Remijan wrote:
> Date: Tue, 30 Jul 2002 15:46:43 -0500
> From: Michael Remijan <[EMAIL PROTECTED]>
> Reply-To: Tomcat Users List <[EMAIL PROTECTED]>
> To: Tomcat Users List <[EMAIL PROTECTED]>
> Subject: RE: Native OS au
P-Cupertino,ex3) [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, July 30, 2002 1:53 PM
To: '[EMAIL PROTECTED]'
Subject: Native OS authentication using single sign on ...
I am currently trying to authenticate multiple webapps under a single
authentication mechanism. That is login once and you can
ubject: RE: Multiple Web App Authentication
Thank you for your reply. I have done the same thing but what I found is
that, using your example,login.jsp would have to reside in each web
applications directory. So if I have 5 different web applications,
login.jsp would have to be replicated 5 times. I wou
e bottom of httpd.conf
outside of the as well as inside the but below
the . None of these attempts work as desired.
--
Josh
> -Original Message-
> From: Turner, John [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, July 30, 2002 2:23 PM
> To: 'Tomcat Users List'
> Subject:
; Sent: Tuesday, July 30, 2002 1:12 PM
>> To: Tomcat Users List; [EMAIL PROTECTED]
>> Subject: Re: Apache Authentication for Tomcat
>>
>>
>> Hello Josh,
>>
>> I have my Apache authentication set up like this:
>>
>>
>> AuthTyp
.1" 304 0
192.168.1.2 - - [30/Jul/2002:15:42:52 -0400] "GET /some.jsp HTTP/1.1" 200
272
As you can see, my remote browser request for "intranet1/" required
authentication, yet "intranet1/some.jsp did not. Any ideas?
--
Josh
--
To unsubscribe, e-mail: <mai
lto:[EMAIL PROTECTED]]
Sent: Tuesday, July 30, 2002 2:12 PM
To: Tomcat Users List
Subject: RE: Apache Authentication for Tomcat
I removed the section from my and added this above
it all:
AuthType Basic
AuthName "protected.zeus.intranet1"
AuthUserFile /drives/a/webapps/.intra
2 1:12 PM
> To: Tomcat Users List; [EMAIL PROTECTED]
> Subject: Re: Apache Authentication for Tomcat
>
>
> Hello Josh,
>
> I have my Apache authentication set up like this:
>
>
> AuthType Basic
> AuthName "protected area"
> AuthUserFile security/.
On Tue, 30 Jul 2002, Srofe, Douglas (c) wrote:
> Date: Tue, 30 Jul 2002 14:10:19 -0400
> From: "Srofe, Douglas (c)" <[EMAIL PROTECTED]>
> Reply-To: Tomcat Users List <[EMAIL PROTECTED]>
> To: 'Tomcat Users List' <[EMAIL PROTECTED]>
> Subjec
longer requires any authentication on the
static or dynamic content.
Any other ideas?
--
Josh
> -Original Message-
> From: Turner, John [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, July 30, 2002 2:23 PM
> To: 'Tomcat Users List'
> Subject: RE: Apache Authentication
o,ex3) [mailto:[EMAIL PROTECTED]]
SDc> Sent: Tuesday, July 30, 2002 2:31 PM
SDc> To: 'Tomcat Users List'
SDc> Subject: RE: Multiple Web App Authentication
SDc> I have been working on the same thing. I believe it can be accomplished by
SDc> modifying your web.xml file in th
I am currently trying to authenticate multiple webapps under a single
authentication mechanism. That is login once and you can access all of the
webapps under a given virtual host. I have enabled single sign on in the
server.xml file and I have added a and
in my conf/web.xml file. Everything
one place. Are you experiencing something different?
-Original Message-
From: HAVENS,PETER (HP-Cupertino,ex3) [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, July 30, 2002 2:31 PM
To: 'Tomcat Users List'
Subject: RE: Multiple Web App Authentication
I have been working on the same
I have been working on the same thing. I believe it can be accomplished by
modifying your web.xml file in the conf directory. You will need a
and a . Here is what I added and it
seems be working. Hope this gets you started.
-Peter
-
Gryphon Authentication
lto:[EMAIL PROTECTED]]
Sent: Tuesday, July 30, 2002 2:13 PM
To: Tomcat Users List
Subject: RE: Apache Authentication for Tomcat
That may very well work for the security implementation but it
doesn't seem to work for the style. I added my JkMounts after
(outside of) the VirtualHost tag and reque
That may very well work for the security implementation but it
doesn't seem to work for the style. I added my JkMounts after
(outside of) the VirtualHost tag and requests made to the JkMounts are
forwarded to Tomcat without authentication.
Anyone else, know how to do this?
--
I am trying to implement single authentication (form based) for multiple web
applications within a single virtual host. I have read the documentation
for single-sign on and have made that work. However, it appears that the
logon page(s) need to be in all web applications. Authentication is
Hello Josh,
I have my Apache authentication set up like this:
AuthType Basic
AuthName "protected area"
AuthUserFile security/.htpasswd
AuthGroupFile security/.htgroup
require group myapp_admin myapp_user
One thing to note is the Apache authentication configura
I'm running apache-2.0.39 and tomcat-4.0.2 using mod_jk compiled on RH7.2. I
setup Apache to require authentication for a given virtual host using an
htpasswd file. Because the same virtual host has some JkMount directives,
some requests are forwarded on to Tomcat without authentication. Ho
I am experimenting with the additions John Holman committed to CVS for
JNDIRealm.java that provides authentication via an LDAP bind. I'm curious
to know if anyone has successfully configured LDAP bind to work with
Novell's edirectory.
thanks
-_A
--
To unsubscribe, e-mail: <
Yeah, it'd would be a good idea to store the authentication information -
userid/pwd - in one place. And then use LDAP or JNDI. If you store the info
in the database, only Tomcat would be able to access it (unless you use
LDAP - maybe Apache has a LDAP module). Also I'd suggest either
1101 - 1200 of 1842 matches
Mail list logo
