Re: multiple servers and digest authentication

2013-12-02 Thread Dehaudt, Christophe
On 12/1/13 6:41 AM, Christopher Schultz ch...@christopherschultz.net wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Christophe, On 11/29/13, 8:55 PM, Dehaudt, Christophe wrote: 1/ Sticky session : yes, that is the way I have currently set my load balancer. But there is a drawback

Re: multiple servers and digest authentication

2013-12-02 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Christophe, On 12/2/13, 8:53 AM, Dehaudt, Christophe wrote: On 11/29/13, 8:55 PM, Dehaudt, Christophe wrote: I don't believe you can have the F5 manage any part of the authentication. But you can use (expiring!) sticky load-balancing. I've

Re: multiple servers and digest authentication

2013-12-01 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Christophe, On 11/29/13, 8:55 PM, Dehaudt, Christophe wrote: 1/ Sticky session : yes, that is the way I have currently set my load balancer. But there is a drawback when the client is contineoulsy using the service = because it will never been

RE: multiple servers and digest authentication

2013-12-01 Thread Martin Gainty
From: cdeha...@ebay.com To: users@tomcat.apache.org CC: cdeha...@ebay.com Subject: Re: multiple servers and digest authentication Date: Sat, 30 Nov 2013 01:55:32 + Hi, Thanks for your answers: 1/ Sticky session : yes, that is the way I have currently set my load balancer

Re: multiple servers and digest authentication

2013-11-29 Thread Dehaudt, Christophe
Hi, Thanks for your answers: 1/ Sticky session : yes, that is the way I have currently set my load balancer. But there is a drawback when the client is contineoulsy using the service = because it will never been load balanced again. The worst is when one of the server is stopped and restarted =

Re: multiple servers and digest authentication

2013-11-27 Thread Mark Thomas
On 27/11/2013 07:34, Dehaudt, Christophe wrote: Is there a way to share the nonce between servers so they can act as one? No. You'd need to customise the DigestAuthenticator to do that. I would like to get your advices , how to make a multiple server deployment running with Http digest. Use

Re: multiple servers and digest authentication

2013-11-27 Thread André Warnier
Mark Thomas wrote: On 27/11/2013 07:34, Dehaudt, Christophe wrote: Is there a way to share the nonce between servers so they can act as one? No. You'd need to customise the DigestAuthenticator to do that. I would like to get your advices , how to make a multiple server deployment running

Re: multiple servers and digest authentication

2013-11-27 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 André, On 11/27/13, 5:15 AM, André Warnier wrote: Mark Thomas wrote: On 27/11/2013 07:34, Dehaudt, Christophe wrote: Is there a way to share the nonce between servers so they can act as one? No. You'd need to customise the

multiple servers and digest authentication

2013-11-26 Thread Dehaudt, Christophe
Hi, To spread the load, my application is installed on several servers, each of them managed by Tomcat (7.0.26). On top on that, a load balancer ensures the traffic is correctly distributed evenly. The tomcat configuration is set with Digest authentification. The problem I'm facing is that