Miguel -- thanks for the clarification. So access control deals
with principals and the rights they have to perform actions on
resources and authentication deals with granting a user access
to the webapp itself. Reading the documentation is it not
authentication that's enabled/disabled in web.xml and not access
control?
At any rate I've followed the basic steps outlined in the
security documentation but get the following error in my logs:
May 17, 2005 5:32:46 PM org.apache.catalina.realm.JAASRealm
authenticate
SEVERE: Unexpected error
java.lang.SecurityException: Unable to locate a login
configuration
at
com.sun.security.auth.login.ConfigFile.<init>(ConfigFile.java:97)
Any ideas why I'd be getting this error? I've never
intalled/setup anything to do with JAAS on this server (and I've
setup the server from scratch and been the sole adminstrator
since then) so I'm a little confused as to why I'd see mention
of the JAASRealm in the logs.
Cheers,
Brandon
---- On Wed, 18 May 2005, Miguel Figueiredo
([EMAIL PROTECTED]) wrote:
> Hello Brandon,
>
> Authentication is a process in witch a user makes himself
unmistakably
> known to the web application.
> Access Control is another process, in witch it's tested if an
authenticated
> user (also called a principal), has rights to perform an
action on a
> resource. You can configure default access control to
principals in the
> startup repository image that is created inside the <data> tag
in
> domain.xml, but the usual way to do it shall be in runtime, by
using the
> client side API.
> Uncommenting the security directives on web.xml, just enables
the usage of
> the default roles and users (principals), also configured in
domain.xml, so
> JAAS isn't needed now. My advice: messing up with jaas isn't
for the feint
> of heart, so I wouldn't sugest you to try it just yet ;)
>
> Best regards,
> Miguel Figueiredo
>
> -----Original Message-----
> From: Brandon Dove [mailto:[EMAIL PROTECTED]
> Sent: quarta-feira, 18 de Maio de 2005 15:21
> To: Jacob Lund
> Subject: Re: Re: Problems getting authentication working
>
> I've been following the online documentation but I guess I'm
not
> clear on the difference between access control and
> authentication and where/how it should be applied. As I
> understand it access control determines the permissions that a
> user has for certain actions. These access controls are
> specified in Domain.xml correct?
>
> So how does authentication differ? Reading the Security
section
> of the online docs it simply indicates that to enable
> authentication one should uncomment the indicated lines in
> web.xml but doesn't indicate any further JAAS setup is
required.
> I have quite limited experience with this so any
> help/clarification is much appreciated.
>
> Cheers,
>
> Brandon
>
>
>
>
> ________________________________________________
> Get your own "800" number
> Voicemail, fax, email, and a lot more
> http://www.ureach.com/reg/tag
>
>
> ---- On Wed, 18 May 2005, Jacob Lund ([EMAIL PROTECTED]) wrote:
>
> > What realm do you want to use? If you want to use users and
> groups defined
> > in slide the have a look at:
> > http://jakarta.apache.org/slide/howto-jaas.html
> >
> > /jacob
> >
> > ----- Original Message -----
> > From: "Brandon Dove" <[EMAIL PROTECTED]>
> > To: <slide-user@jakarta.apache.org>
> > Sent: Tuesday, May 17, 2005 11:21 PM
> > Subject: Problems getting authentication working
> >
> >
> > > I've enabled authentication (by uncommenting the lines
> indicated
> > > in web.xml) but subsequent attempts to log in fail using
any
> > > login/password (including root/root). The logs indicate
the
> > > following error:
> > >
> > > SEVERE: Unexpected error
> > > java.lang.SecurityException: Unable to locate a login
> > > configuration
> > >
> > >
> > > Can anyone offer some help? I'm using Slide 2.1 with
Tomcat
> > > 5.5.4.
> > >
> > > Cheers,
> > >
> > > Brandon
> > >
> > > ________________________________________________
> > > Get your own "800" number
> > > Voicemail, fax, email, and a lot more
> > > http://www.ureach.com/reg/tag
> > >
> > >
>
---------------------------------------------------------------------
> > > To unsubscribe, e-mail:
> [EMAIL PROTECTED]
> > > For additional commands, e-mail:
> [EMAIL PROTECTED]
> > >
> >
> >
> >
>
---------------------------------------------------------------------
> > To unsubscribe, e-mail:
> [EMAIL PROTECTED]
> > For additional commands, e-mail:
> [EMAIL PROTECTED]
> >
> >
> >
>
>
>
---------------------------------------------------------------------
> To unsubscribe, e-mail:
[EMAIL PROTECTED]
> For additional commands, e-mail:
[EMAIL PROTECTED]
>
>
>
________________________________________________
Get your own "800" number
Voicemail, fax, email, and a lot more
http://www.ureach.com/reg/tag
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
