Hello,
I have tomcat based application that is invoked from the apache side through
mod_jk. I've setup basic auth on the apache side and the very first request
to tomcat works as expected (challenged when not logged in, not challenged
when logged in), but any subsequent request and an http stat
Hello,
I'm trying to setup basic auth with tomcat using a MemoryRealm but I'm
unsure as to how to set the username and password for a given role. I don't
have just one username and password for auth but 1000s. My users are logging
into an apache/perl application which has a link to a tomcat bas
D MESSAGE-
> Hash: SHA1
>
> Colin,
>
> On 1/13/2010 4:01 PM, cgswtsu78 wrote:
>> I'm new to tomcat and apache and I've seen some of the tomcat basic auth
>> examples on the web and all of them hardcode a user id/password for a
>> role
>> in the tomc
Thanks for the info. Is there anyway to configure tomcat to just check the
httpd flag? If its not set challenge the user if it is set allow access to
the resource?
n828cl wrote:
>
>> From: cgswtsu78 [mailto:cg...@proofpoint.com]
>> Subject: Best Basic Auth Approach
>>
Hello,
I'm new to tomcat and apache and I've seen some of the tomcat basic auth
examples on the web and all of them hardcode a user id/password for a role
in the tomcat-users.xml file. What if there is a 1000 userid/pwd
combinations for that role that are valid, how can the userid/pwd
configura
Hello,
I'm using the below httpd configuration in order to secure a resource
("/reportsvcs_ws") using basic auth. When I hit the url
https://host/reportsvcs_ws without authing, I'm prompted as expected but I
get a http status code of 401 when accessing the resource. I get the same
status code
::REST
Options +ExecCGI
PerlSendHeader On
Satisfy all
allow from all
Options None
AuthName "service name"
AuthType Basic
AuthUserFile /xyz/file.users
require valid-user
Mark Thomas wrote:
>
> On 08/01/2010 16:51, cgswtsu78 wrote:
>>
>&
Hello,
I'm using mod_jk to forward all apache requests to /reportsvcs_ws/* to
tomcat and I have a question regarding basic auth. I need to ensure the
user has been authorized prior to the /reportsvcs_ws/* request and I'm
unsure as the best angle to take. Is there anything that can be configure