Hi,
I would like to use the configured realm to authenticate users but I
don't want to use the standard J2EE mechanism (for many reasons).
Also, my needs for authorisations are not limited to URLs and are more
fine-grained. Since I configured a JNDI realm I wanted to access the
reamù in my webapp
Thank you very much.
-Original Message-
From: Victor R. Cardona [mailto:[EMAIL PROTECTED]
Sent: Thursday, June 03, 2004 11:05 PM
To: Tomcat Users List
Subject: Re: Programmatic Authentication?
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Annie Guo wrote:
| Mind sharing your code
I would greatly appreciate it.
-Original Message-
From: Victor R. Cardona [mailto:[EMAIL PROTECTED]
Sent: Wednesday, June 02, 2004 11:56 PM
To: Tomcat Users List
Subject: Re: Programmatic Authentication?
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Annie Guo wrote:
| Mind sharing your
Victor:
I would greatly appreciate it.
-Original Message-
From: Victor R. Cardona [mailto:[EMAIL PROTECTED]
Sent: Wednesday, June 02, 2004 11:56 PM
To: Tomcat Users List
Subject: Re: Programmatic Authentication?
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Annie Guo wrote:
| Mind
: Wednesday, June 02, 2004 11:56 PM
To: Tomcat Users List
Subject: Re: Programmatic Authentication?
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Annie Guo wrote:
| Mind sharing your code?
Not at all. I will post it tomorrow.
Victor
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.2 (GNU/Linux)
Comment
Users List
Subject: Re: Programmatic Authentication?
I've done something similar and written a little tutorial about it at:
http://www.kopz.org/public/documents/tomcat/jaasintomcat.html
Maybe it helps.
Michiel
Annie Guo wrote:
Victor:
I would greatly appreciate it.
-Original Message
: Programmatic Authentication?
I've done something similar and written a little tutorial about it at:
http://www.kopz.org/public/documents/tomcat/jaasintomcat.html
Maybe it helps.
Michiel
--
Michiel Toneman Software Engineer Bibit Global Payment Services
Regulierenring 10 3981 LB Bunnik
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Annie Guo wrote:
| Mind sharing your code?
Here is my code. I make no guaranties as to its security.
Victor
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
Mind sharing your code?
-Original Message-
From: Victor R. Cardona [mailto:[EMAIL PROTECTED]
Sent: Tuesday, June 01, 2004 9:44 PM
To: Tomcat Users List
Subject: Re: Programmatic Authentication?
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Carl Howells wrote:
| Is it possible to set
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Annie Guo wrote:
| Mind sharing your code?
Not at all. I will post it tomorrow.
Victor
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
Is it possible to set the Principal and Roles for a session in a manner
which will satisfy a role-name security constraint programmatically?
At all? I don't mind ignoring the servlet spec and doing something
tomcat-specific. This is something that vitally needs to be done on my
project.
Yes,
just write your own extension of org.apache.catalina.Realm (or extend
o.a.c.realm.RealmBase)and read:
http://jakarta.apache.org/tomcat/tomcat-5.0-doc/realm-howto.html
then follow the instruction on how to install your own valve (search
the list :-) )
-- Jeanfrancois
Carl Howells wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Carl Howells wrote:
| Is it possible to set the Principal and Roles for a session in a manner
| which will satisfy a role-name security constraint programmatically?
| At all? I don't mind ignoring the servlet spec and doing something
|
How do i programmatically authenticate to the servlet container usin Tomcat?
I was unable to find the appropriate API call to do so.
The reason i need this is because the web app that i have has a self
registration feature (like most other web apps). Currently without making
the API call, i first
There is no API available to webapps for this functionality.
To get around this gap, you'll probably need to look at writing your own
Valve. What and how - I am am unsure based on the description below.
http://jakarta.apache.org/tomcat/tomcat-4.1-doc/config/valve.html
I am considering to implement a custom JDBCRealm.
It should make available a method such as
boolean authenticate(String username)
perhaps in a custom Principal class.
The method should log in (authenticate) the user and return true,
if user exists (with correct roles), false otherwise.
Can
16 matches
Mail list logo