Send a blank email to users-unsubscr...@tomcat.apache.org
On Wed, Aug 31, 2016 at 9:01 AM, 罗茂林 wrote:
> could someone remove me from the tomcat user list?
Just send a blank mail to users-unsubscr...@tomcat.apache.org in order to
unsubscribe
Svetlin
2016-08-31 10:01 GMT+03:00 罗茂林 :
> could someone remove me from the tomcat user list?
could someone remove me from the tomcat user list?
Chris said:
>I was happy to see SO demolish the "Experts Exchange" overnight. Their site
>got great Google rankings but never gave you any actual answers >unless you
>paid them.
>
>- -chris
About 3/4 of the time when I have gone there, all I have to do is scroll down
the page to below all the a
I think I prefer to stay with Tomcat users list. Problem with SO is that
they close the questions without the second thought.Its becoming more of
kind of dictatorship. Too generic , close it and too easy, flame the poster
altitude.
Again I don't have any issues with SO and I did receive lot of as
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Joesph,
On 3/14/14, 12:38 PM, Joesph Bleau wrote:
> It's refreshing to see people who still care about user-list
> communities. They seem to foster the kind of individuals I enjoy
> communicating with, but are sadly dwindling.
Come meet some of us
Chris,
I'm afraid I was also a bit guilty of this very recently, but I'll accept
your welcome also. :-)
It's refreshing to see people who still care about user-list communities.
They seem to foster the kind of individuals I enjoy communicating with, but
are sadly dwindling.
Cheers
On Fri, Mar
On Fri, Mar 14, 2014 at 8:02 AM, Christopher Schultz <
ch...@christopherschultz.net> wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
>
> Leo,
>
> On 3/14/14, 10:58 AM, Leo Donahue wrote:
> > On Fri, Mar 14, 2014 at 6:10 AM, Christopher Schultz <
> > ch...@christopherschultz.net> wrote:
On 2014-03-14 3:59 PM, Christopher Schultz wrote:
Don't worry: I wasn't trying to single you out. There are lots of
people who do it.
Now that you're here, I hope you continue to consider yourself a
member of the community and remain a mailing list contributor. You can
learn a lot from reading o
>
>> I'm finding a lot of questions lately posted simultaneously to
>> both tomcat-user and to StackOverflow. How does the Tomcat
>> community feel about that?
>>
>> Any opinions?
>>
>> - -chris
>>
>> I don't prefer sites that r
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Léa,
On 3/14/14, 10:33 AM, Léa Massiot wrote:
> I'm sorry I posted the same message on "StackOverflow" and
> "Tomcat-Users". It's not something I usually do.
Don't worry: I wasn't trying to single you out. There are lots of
people who do it.
Now
On Fri, Mar 14, 2014 at 6:10 AM, Christopher Schultz <
ch...@christopherschultz.net> wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
>
> All,
>
> I'm finding a lot of questions lately posted simultaneously to both
> tomcat-user and to StackOverflow. Ho
--
View this message in context:
http://tomcat.10.x6.nabble.com/Re-Tomcat-user-versus-StackOverflow-tp5014264.html
Sent from the Tomcat - User mailing list archive at Nabble.com.
On Fri, Mar 14, 2014 at 01:31:06PM +, Mark Thomas wrote:
> While something that is effectively cross-posting is annoying for
> those us subscribed to this list and who use stack overflow I can
> understand folks wanting to seek help from a range of different places.
I'm reminded of the repairm
I don't think I've ever had to ask a question on SO because there's
nearly always someone else who has already asked my question and it's
easy to search. So my tendency is to let Google fish in SO (and the
rest of the world) for my question, rummage a bit, and then try to
find an ML for the produc
On 14/03/2014 13:10, Christopher Schultz wrote:
> All,
>
> I'm finding a lot of questions lately posted simultaneously to
> both tomcat-user and to StackOverflow. How does the Tomcat
> community feel about that? I'm wondering whether I (as a member of
> said communi
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
All,
I'm finding a lot of questions lately posted simultaneously to both
tomcat-user and to StackOverflow. How does the Tomcat community feel
about that? I'm wondering whether I (as a member of said community)
should be encouraging SO use
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Bill,
On 12/8/11 7:33 PM, Bill Wang wrote:
> Thanks to all for the explanation.
>
> I have a new question regarding the admin role.
>
> With default setup, if I login as admin, I can start,stop, undeploy
> and deploy the application. Now, because th
Thanks to all for the explanation.
I have a new question regarding the admin role.
With default setup, if I login as admin, I can start,stop, undeploy and
deploy the application. Now, because the admin password has been shared by
team, and I can't not share it with team.
So I plan to disable und
On 29/11/2011 17:05, Christopher Schultz wrote:
> Mark,
>
> On 11/29/11 11:15 AM, ma...@apache.org wrote:
>> Christopher Schultz wrote:
>
>>> -BEGIN PGP SIGNED MESSAGE- Hash: SHA1
>>>
>>> Bill,
>>>
>>> On 11/28/11 7:08 PM, Bill Wang wrote:
Here I have the last question, what's the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Mark,
On 11/29/11 11:15 AM, ma...@apache.org wrote:
> Christopher Schultz wrote:
>
>> -BEGIN PGP SIGNED MESSAGE- Hash: SHA1
>>
>> Bill,
>>
>> On 11/28/11 7:08 PM, Bill Wang wrote:
>>> Here I have the last question, what's the reload option
Christopher Schultz wrote:
>-BEGIN PGP SIGNED MESSAGE-
>Hash: SHA1
>
>Bill,
>
>On 11/28/11 7:08 PM, Bill Wang wrote:
>> Here I have the last question, what's the reload option, is it same
>> as stop/start?
>
>According to markt (who is known to be occasionally trustworthy):
>
> reload =
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Bill,
On 11/28/11 7:08 PM, Bill Wang wrote:
> Here I have the last question, what's the reload option, is it same
> as stop/start?
According to markt (who is known to be occasionally trustworthy):
reload = stop + start
> If it is, maybe I just ne
Thanks for everyone who replied me. I successfully did it.
Now on-call team can stop/start the tomcat instances by themselves, but
with other action,such as deploy, undeploy, check server status, they will
get "access denied ".
*
*
That's perfect.
Here I have the last question, what's the reload
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Mark,
On 11/25/11 12:47 PM, Mark Thomas wrote:
> There is no such command as restart. You'll need:
> /html/stop
> /html/start
Whoops. Thanks for catching that.
> You'll probably want: /html/list as
> well.
+1
- -chrs
-BEGIN PGP SIGNATURE
only?
>
> http://hostname:8181/manager/html/stop?path=/APPNAME
> http://hostname:8181/manager/html/start?path=/APPNAME
>
> Regards,
> Bill
> On Thu, Nov 24, 2011 at 7:06 PM, wrote:
>
>> Bill Wang wrote:
>>
>>> Hi Tomcat guru,
>>>
>>> I have qu
On 25/11/2011 15:10, Christopher Schultz wrote:
> Bill,
>
> On 11/24/11 11:42 PM, Bill Wang wrote:
>> Thanks, with your help, I find out this link:
>> http://onjava.com/onjava/2001/07/24/tomcat.html, seems you need
>> me setup MemoryRealm, then setup security constraint in
>> webapps/manager/WE
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Bill,
On 11/24/11 11:42 PM, Bill Wang wrote:
> Thanks, with your help, I find out this link:
> http://onjava.com/onjava/2001/07/24/tomcat.html, seems you need me
> setup MemoryRealm, then setup security constraint in
> webapps/manager/WEB-INF/web.xm
n Thu, Nov 24, 2011 at 7:06 PM, wrote:
> Bill Wang wrote:
>
> >Hi Tomcat guru,
> >
> >I have questions for the tomcat user roles setup.
> >
> >On-call team (24*7 support) need permission to restart one tomcat
> >services, if they get call. I think
Bill Wang wrote:
>Hi Tomcat guru,
>
>I have questions for the tomcat user roles setup.
>
>On-call team (24*7 support) need permission to restart one tomcat
>services, if they get call. I think it is maybe possible to let them
>restart tomcat throught "Tomcat Web Appli
Hi Tomcat guru,
I have questions for the tomcat user roles setup.
On-call team (24*7 support) need permission to restart one tomcat
services, if they get call. I think it is maybe possible to let them
restart tomcat throught "Tomcat Web Application Manager" (the admin url
http://s
ization issues.This is
> not big deal.
> But I'd like to understand what exactly does the session StandardManager in
> a case where you don't use the tomcat user possibilities.
> Are there any connections at all betweenn session Manager and Tomcat user
> sessions?
&g
'd like to understand what exactly does the session StandardManager in
a case where you don't use the tomcat user possibilities.
Are there any connections at all betweenn session Manager and Tomcat user
sessions?
Are our Users session recognize as StandardManager sessions?
What i
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Mark,
On 6/5/2009 12:14 PM, Mark Thomas wrote:
> Christopher Schultz wrote:
>>> For the JDBC and DataSource Realms, earlier versions (5.5.0 to 5.5.5 and
>>> 4.1.0 to 4.1.31 with the DataSource Realm introduced in 4.1.17) are
>>> vulnerable.
>> I'm afr
Christopher Schultz wrote:
>> For the JDBC and DataSource Realms, earlier versions (5.5.0 to 5.5.5 and
>> 4.1.0 to 4.1.31 with the DataSource Realm introduced in 4.1.17) are
>> vulnerable.
>
> I'm afraid I still don't understand the vulnerability in 5.5's
> DataSourceRealm (the one I actually look
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Mark,
On 6/5/2009 7:03 AM, Mark Thomas wrote:
> Christopher Schultz wrote:
>> Mark,
>>
>> On 6/3/2009 11:42 AM, Mark Thomas wrote:
>>> CVE-2009-0580: Tomcat information disclosure vulnerability
>> I know I'm likely to get a vague response, but could y
David kerber wrote:
> Mark Thomas wrote:
> ...
>> 5.5.x users should do one of the following:
>> - upgrade to 5.5.28 when released
>> - apply this patch http://svn.apache.org/viewvc?rev=781379&view=rev
>> 4.1.x users should do one of the following:
>> - upgrade to 4.1.40 when released
>> - appl
Mark Thomas wrote:
...
5.5.x users should do one of the following:
- upgrade to 5.5.28 when released
- apply this patch http://svn.apache.org/viewvc?rev=781379&view=rev
4.1.x users should do one of the following:
- upgrade to 4.1.40 when released
- apply this patch http://svn.apache.org/viewv
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Updated to clarify affected versions as they vary for each affected Realm.
CVE-2009-0580: Tomcat information disclosure vulnerability
Severity: Low
Vendor:
The Apache Software Foundation
Versions Affected:
MemoryRealm:
Tomcat 4.1.0 to 4.1.39
Tomc
Christopher Schultz wrote:
> Mark,
>
> On 6/3/2009 11:42 AM, Mark Thomas wrote:
>> CVE-2009-0580: Tomcat information disclosure vulnerability
>
> I know I'm likely to get a vague response, but could you provide some
> more info about this issue?
I'm sorry you have that impression. As I hope you
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Rémy,
On 6/4/2009 1:04 PM, Rémy Maucherat wrote:
> On Thu, Jun 4, 2009 at 6:48 PM, Christopher Schultz
> wrote:
>> I don't see any information disclosure vulnerability in the first place,
>> and I don't see how your patch would have fixed it.
>>
>> ?
It looks to me like the change fixes an NPE when a null or nonsense
password is given. The NPE would allow an attacker to determine if a
username is valid (without having to know the password). Not the most
serious security breach, but login protocols aren't supposed to let
you guess usernames.
--
On Thu, Jun 4, 2009 at 6:48 PM, Christopher Schultz
wrote:
> I don't see any information disclosure vulnerability in the first place,
> and I don't see how your patch would have fixed it.
>
> ??!
The behavior was different if the user is not found of if the password is wrong.
(ok, the security is
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Mark,
On 6/3/2009 11:42 AM, Mark Thomas wrote:
> CVE-2009-0580: Tomcat information disclosure vulnerability
I know I'm likely to get a vague response, but could you provide some
more info about this issue?
> Due to insufficient error checking in som
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
CVE-2009-0580: Tomcat information disclosure vulnerability
Severity: Low
Vendor:
The Apache Software Foundation
Versions Affected:
Tomcat 4.1.0 to 4.1.39
Tomcat 5.5.0 to 5.5.27
Tomcat 6.0.0 to 6.0.18
The unsupported Tomcat 3.x, 4.0.x and 5.0.x vers
When you put a backslash in front of them they become part of the matching
machinery's special characters, like . [ and so on. Without the backslash
they're normal characters and matched as-is. So if you had the sed command
s/(a)+/z/ and you fed it the string aaa, you would not get back z. Y
Rusty Wright wrote:
[...]
The \( \) is the grouping thing where what matches in it is then
substituted for as the \1 on the right hand side.
Yes, but if you escape them with \ , do they still get seen as (meta)
grouping indicators, or as plain "(" and ")" ?
(I don't remember what sed wants p
Thanks; good point about the speedup by not using .* (although since this is in
a boot script, in this case it shouldn't really matter much). The \( \) is the
grouping thing where what matches in it is then substituted for as the \1 on
the right hand side. Cut is one of those commands I never
Rusty Wright wrote:
I love shell script hacks so my /etc/init.d/tomcat script has the
following in the upper part where it's setting variables:
TOMCAT_HOME=`grep ^tomcat /etc/passwd | sed -e
's/.*:.*:.*:.*:.*:\(.*\):.*/\1/'`
You love shell scripts, but don't seem to love regexp's.
expor
> From: Rusty Wright [mailto:rusty.wri...@gmail.com]
> Subject: Re: run tomcat as tomcat user
>
> To answer my own question; I did some google searching and
> figured out that you need to copy the tomcat conf directory
> to ~tomcat and also create the directories ~/tomcat/log
tartup.sh
This will switch to the tomcat user before launching Tomcat.
- -chris
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iEYEARECAAYFAkl6EF8ACgkQ9CaO5/Lv0PDolACgwG/Rx+cpzb8GuX4BOzjEhakU
Yq8An05jNk9mz17qCMpo4
much more easily just by
adjusting the path to startup.bat and bouncing Tomcat.
If the OP is using this script as part of the system startup (that is,
it is running as root), then you'll need to adjust the startup command
to be:
su - tomcat -c /path/to/tomcat/bin/startup.sh
This will switc
mcat.
If the OP is using this script as part of the system startup (that is,
it is running as root), then you'll need to adjust the startup command
to be:
su - tomcat -c /path/to/tomcat/bin/startup.sh
This will switch to the tomcat user before launching Tomcat.
- -chris
-BEGIN PGP SIGNA
André Warnier wrote:
Kaushal Shriyan wrote:
Hi
I am not able to start tomcat as tomcat user on ubutu 8.04 Linux,
Below is my start/stop script
Any ideas as what is going wrong ?
I think the way you are using the "su" command is wrong.
Try :
su - (userid) -c "command + pa
Kaushal Shriyan wrote:
Hi
I am not able to start tomcat as tomcat user on ubutu 8.04 Linux,
Below is my start/stop script
Any ideas as what is going wrong ?
I think the way you are using the "su" command is wrong.
Try :
su - (userid) -c "command + params"
You also probab
\
--stop \
--quiet \
--user ${TOMCAT_USER} \
--startas ${TOMCAT_STOP}
log_end_msg $?
;;
'restart')
${0} stop
log_action_msg "sleeping for several seconds ..."
sleep 13
${0} start
;;
*)
Hi
I am not able to start tomcat as tomcat user on ubutu 8.04 Linux,
Below is my start/stop script
Any ideas as what is going wrong ?
Thanks and Regards
Kaushal
###
#!/bin/sh
#
# Startup script for
confidential nature and Sender does not
endorse distribution to any party other than intended recipient. Sender does
not necessarily endorse content contained within this transmission.
> Subject: Tomcat user sessions
> Date: Fri, 14 Nov 2008 11:11:13 -0600
> From: [EMAIL PROTECTED]
&g
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Tom,
Reis, Tom wrote:
> Is there a way to view all the sessions in Tomcat and remove or stop
> one? Thanks.
There is nothing built-into Tomcat to allow you to do this. Certain
add-ons and server managers can be used to do this, though. One such too
i
Is there a way to view all the sessions in Tomcat and remove or stop
one? Thanks.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Tokajac,
Tokajac wrote:
> Now, i want to check another column on login: userstatus. Value of the
> column can be 0 or 1. Only users with correct username and status 1 can
> login.
>
> How can i do this with j_security_check?
Mark's suggestion of usi
Tokajac wrote:
> Hello!
>
> For Connection on database i initialize in context.xml:
> [CODE]
> driverName="com.Driver"
> connectionURL="jdbc:url"
> connectionName="CONNAME" connectionPassword="CONPASS" userTable="BFWBBUSR"
> userNameCol="LOGINNM" userCredCol="USRPASS"
> userRoleTable="BF
j_security_check?
Regards
--
View this message in context:
http://www.nabble.com/j_security_check-Tomcat-user-status-tp19563429p19563429.html
Sent from the Tomcat - User mailing list archive at Nabble.com.
-
To start a new topic, e-mail
Many thanks Antonio
> Message du 17/04/08 10:37
> De : "Antonio Vidal Ferrer"
> A : "'Tomcat Users List'" , "'ZB'"
> Copie à :
> Objet : RE: Tomcat user
>
> Hi:
>
>
> As with many other services, specially
To: users@tomcat.apache.org
Subject: Tomcat user
Hi everybody,
sorry but i'm new to tomcat !
which user id is preferred to run tomcat : "root" or "lambda" ?
Thank you
JLucas
-
To start a new topic,
Hi everybody,
sorry but i'm new to tomcat !
which user id is preferred to run tomcat : "root" or "lambda" ?
Thank you
JLucas
ers List
Subject: Re: Tomcat 5.0.28 installed under LINUX - access to file system
limited to tomcat user
Ekkehard
A quick clarification please..Are any of these directories sym-linked?
M-
---
This e-mail message (including att
Dear Martin,
Indeed, they are.
Thank you
Ekkehard
-Original Message-
From: Martin Gainty [mailto:[EMAIL PROTECTED]
Sent: Thursday, December 07, 2006 3:21 PM
To: Tomcat Users List
Subject: Re: Tomcat 5.0.28 installed under LINUX - access to file system
limited to tomcat user
est strictement interdit de le diffuser, de le distribuer
ou de le reproduire.
- Original Message -
From: <[EMAIL PROTECTED]>
To:
Sent: Thursday, December 07, 2006 7:47 AM
Subject: Tomcat 5.0.28 installed under LINUX - access to file system limited to
tomcat user
> Hello
>
Hello
I have an installation of tomcat version 5.0.28 where tomcat runs under a user
tomact on LINUX.
My jsp application should read files from a directory. Read access to directory
and files is limited to group "sdf" and file owner "asd":
drwxrws--- 17 asd sdf data
e never used it myself. Worth a look, though.
Good luck!
---
Tracy Nelson / Nelnet Business Solutions
402 / 617-9449
From: Kevin Mullin [mailto:[EMAIL PROTECTED]
Sent: Friday, 29 September, 2006 11:21
To: users@tomcat.apache.org
Subject: Tomcat User Authent
rale, Charles
R" <[EMAIL PROTECTED]>
09/29/2006 09:56 AM
Please respond to
"Tomcat Users List"
To
"Tomcat Users List"
cc
Subject
RE: Tomcat User Authentication
> From: Caldarale, Charles R
> Subject: RE: Tomcat User Authentication
>
&
> From: Caldarale, Charles R
> Subject: RE: Tomcat User Authentication
>
> You probably don't want to use tomcat-users.xml at all;
> replace it completely with a JAAS-compliant interface to
> RACF.
I would not be surprised if someone from the WebSphere side of your
> From: Kevin Mullin [mailto:[EMAIL PROTECTED]
> Subject: Tomcat User Authentication
>
> We have our own userid authentication process on our IBM
> mainframe computers which uses something called RACF. Is
> there a way to get Tomcat to use this processs to determine
&
Tomcat comes with a file, tomcat-users.xml,
which is used for user authentication and to determine what they can access.
We have our own userid authentication process on our IBM mainframe
computers which uses something called RACF. Is there a way to get
Tomcat to use this processs to determine p
Come on over to my cube or just stand up so we can chat.
ED
-Original Message-
From: Gough, Nicholas D. (LNG-DAY)
[mailto:[EMAIL PROTECTED]
Sent: Wednesday, May 17, 2006 3:49 PM
To: users@tomcat.apache.org
Subject: New Tomcat user
I'm new to this, so please bear with me.
I would
I'm new to this, so please bear with me.
I would like to know how to handle the following:
1. 64-bit Linux (RHEL4) capability (what all needs to be done? Do we
need to build the executables from the 32-bit source?
2. Command Line Interface for management tools (ala' WSADMIN within
IBM's Websphere
Tomcat's main purpose is to serve webapplications, as defined
by sun. Webapplication are suposed to be contained in a WAR, but
tomcat allow to deploy content of war in a directory. WAR are
zip files and do not support links, so does tomcat. It's follows
the filesystem links only because it is unawa
the problem is:
The intranet (website) contains many links to many folders, every folder has
its own permission owner-group-other.
i need to prevent the usr who havn't permission to access the folder(
e.gftp) to access the link to this folder on the website.
can i do this?
On 10/26/05, David Delbe
Question is not clear, but i'll try to reply.
All action attempted by any code inside the jvm running tomcat
(that is operations done by JSP, servlet, realms, tomcat itself and
any other java classes you may add to webapp) are done
on behalf of the user which started tomcat.
So if you start tomcat
I'm using mandrake 10.1 as a server, and jakarta-tomcat-5.0.27.
My intranet running on tomcat should be updated and should use the mandrake
linux users permission for the folders while browsing.
If the intranet is pure html can this happened also?
--
Respectfully,
Mohammad TAg EL-Deen
012 68 10 68
x27;Hearne [mailto:[EMAIL PROTECTED]
Sent: 18 October 2005 19:15
To: Tomcat Users List; Mark Benussi
Subject: Re: Is it even possible to retrieve a custom user principal? (Was:
Tomcat user principal)
Mark,
Thanks so much for your help. That is very enlightening, and I'll
consider doing th
Sent: 18 October 2005 15:31
To: Tomcat Users List
Subject: Re: Is it even possible to retrieve a custom user principal? (Was:
Tomcat user principal)
Mark,
Thanks for the response. In the code below, are you manually calling
JAAS, rather than via the j_security_check mechanism? The proper way
to
.
Hell maybe Apache have reworked this.
-Original Message-
From: Brad O'Hearne [mailto:[EMAIL PROTECTED]
Sent: 18 October 2005 15:31
To: Tomcat Users List
Subject: Re: Is it even possible to retrieve a custom user principal? (Was:
Tomcat user principal)
Mark,
Thanks for the response.
-Mensaje original-
De: Brad O'Hearne [mailto:[EMAIL PROTECTED]
Enviado el: Martes, 18 de Octubre de 2005 09:31 a.m.
Para: Tomcat Users List
Asunto: Re: Is it even possible to retrieve a custom user principal? (Was:
Tomcat user principal)
Mark,
Thanks for the response. In the
-Mensaje original-
De: Brad O'Hearne [mailto:[EMAIL PROTECTED]
Enviado el: Martes, 18 de Octubre de 2005 09:31 a.m.
Para: Tomcat Users List
Asunto: Re: Is it even possible to retrieve a custom user principal? (Was:
Tomcat user principal)
Mark,
Thanks for the response. In the
MAIL PROTECTED]
Sent: 17 October 2005 23:06
To: Tomcat Users List
Subject: Re: Is it even possible to retrieve a custom user
principal? (Was:
Tomcat user principal)
Mark,
Thanks a ton for the reply. I almost want to reply with "you're
kidding,
right?", as I am kind of speechles
to retrieve a custom user principal? (Was:
Tomcat user principal)
Hello,
As this has become a bit of a roadblock in implementing security, I'd
like to ask anyone out there two things:
1) Is it even possible to use a custom user princpal within a realm that
is retrievable within a servlet (v
rne [mailto:[EMAIL PROTECTED]
Sent: 17 October 2005 23:06
To: Tomcat Users List
Subject: Re: Is it even possible to retrieve a custom user principal? (Was:
Tomcat user principal)
Mark,
Thanks a ton for the reply. I almost want to reply with "you're kidding,
right?", as I am kind of
incipal out of the session and call the validation.
-Original Message-
From: Brad O'Hearne [mailto:[EMAIL PROTECTED]
Sent: 17 October 2005 22:25
To: Brad O'Hearne
Cc: Tomcat Users List
Subject: Is it even possible to retrieve a custom user principal? (Was:
Tomcat user principal)
Hel
ssage-
From: Brad O'Hearne [mailto:[EMAIL PROTECTED]
Sent: 17 October 2005 22:25
To: Brad O'Hearne
Cc: Tomcat Users List
Subject: Is it even possible to retrieve a custom user principal? (Was:
Tomcat user principal)
Hello,
As this has become a bit of a roadblock in implementing secu
Hello,
As this has become a bit of a roadblock in implementing security, I'd
like to ask anyone out there two things:
1) Is it even possible to use a custom user princpal within a realm that
is retrievable within a servlet (via presumably the request or
otherwise) in Tomcat?
2) If the answ
Response below:
Wendy Smoak wrote:
From: "Brad O'Hearne" <[EMAIL PROTECTED]>
I would have expected that designation of the user class name would
have resulted in my being returned the class I specified for the user
class name from the requestion.getUserPrincpal() method, but it doesn't.
W
From: "Brad O'Hearne" <[EMAIL PROTECTED]>
I would have expected that designation of the user class name would have
resulted in my being returned the class I specified for the user class
name from the requestion.getUserPrincpal() method, but it doesn't.
What version of Tomcat are you using? A
Wendy,
Thanks for the reply. Here is my realm setup in my Tomcat server.xml:
appName="imap"
userClassNames="com.redbarnsoftware.web.security.UserPrincipal"
roleClassNames="com.redbarnsoftware.web.security.RolePrincipal"
debug="99"
/>
I would have expected that designatio
From: "Brad O'Hearne" <[EMAIL PROTECTED]>
I am using the JAASRealm for Tomcat 5.x, and in my JAAS module, I am
storing my own Principal subclass as the user principal. In my subsequent
servlets, when I invoke the request.getUserPrincipal() method, I am not
returned my user principal, but I am in
I am using the JAASRealm for Tomcat 5.x, and in my JAAS module, I am
storing my own Principal subclass as the user principal. In my
subsequent servlets, when I invoke the request.getUserPrincipal()
method, I am not returned my user principal, but I am instead returned a
GenericPrincipal.
It a
97 matches
Mail list logo