Satish schrieb: > Hey Arne, > > Thanks for quick response. > > Well I am using JAAS module from Slide site, they have made it available for > authentication with Slide. > I did all configurations and tested by accessing from the browser and > DavExplorer, its working well. JAAS module responding preety good way. > > I then tried making HTTP based authentication using 3.1 lib and its also > working fine. > > Later I just was requesting webdav resource where 3.1 lib is configured in > my app, and I was getting error with Slide as Bad Request. > Then i replaced this http 3.1 lib by older version and could get webdav > resource. But now I cant authenticate since AuthScope is not there in older > version. > Hi Satish, As I said I'm using 3.01 and do the authentication that way: HttpClient client = new HttpClient();
// Authentifizierung bei ews client.getState().setCredentials( new AuthScope(null,80), new UsernamePasswordCredentials("Username","UserPasswd") ); // Create a method instance. GetMethod method = new GetMethod(downloadURL); method.setDoAuthentication(true); int statusCode = client.executeMethod(method); That works pretty well. Yours Arne > JAAS is working fine but this is strange problem. > > Regards, > Satish > > > ----- Original Message ----- > From: "Arne v.Irmer" <[EMAIL PROTECTED]> > To: "Slide Users Mailing List" <slide-user@jakarta.apache.org> > Sent: Thursday, September 27, 2007 6:24 PM > Subject: Re: Authentication with Slide - Slide vs tomcat Realm > > > >> Hi Satish, >> Satish schrieb: >> >>> Hi Arne, >>> >>> I manage to authenticate with http client 3.1, latest http client >>> > library > >>> with JAAS module. But I could not get webdav resource now. Upon >>> > searching on > >>> the forum I found Slide is not supporting http client 3.x libraries. >>> >>> >> We are using http client 3.01 and it works. >> >>> I am trying with the typical JAAS authentication with LoginContext, >>> > where I > >>> am getting error as not able to create LoginContext since could not able >>> > to > >>> locate the login configuration. >>> >>> >> This looks like a problem on the server side. I implemented my own JAAS >> authentication, so it might be different to your case. If would get that >> error-message it will stress on not finding my JAAS implementation. I >> your case maybe the JAAS-Implementation you are using has a problem. In >> general speaking it could not be a problem of the version of http >> client, because basic authentication is standardized and well >> implemented in that client. >> You should have the same problems with other clients like DAVExplorer etc. >> >>> Do you have any idea how we can use the http client library, which is >>> easiest way - or it is the limitation of Slide. >>> >>> >>> Regards, >>> Satish >>> >>> >>> ----- Original Message ----- >>> From: "Arne v.Irmer" <[EMAIL PROTECTED]> >>> To: "Slide Users Mailing List" <slide-user@jakarta.apache.org> >>> Sent: Monday, September 17, 2007 2:31 PM >>> Subject: Re: Authentication with Slide - Slide vs tomcat Realm >>> >>> >>> >>> >>>> Hi Satish, >>>> we have to discriminate between the client- and the server side. >>>> If you have a successful login with DAVExplorer the server side is now >>>> working properly. >>>> On client side you can easily access an address that is protected with >>>> basic authentication using the commons-http-client.(see >>>> http://jakarta.apache.org/httpcomponents/httpclient-3.x/) >>>> For authentication look at >>>> >>>> >>>> > http://jakarta.apache.org/httpcomponents/httpclient-3.x/authentication.html > >>>> Hope that helps >>>> Arne >>>> >>>> Satish schrieb: >>>> >>>> >>>>> Hi >>>>> >>>>> There were problem in environment variables, I set all environment >>>>> variables correctly and its seems to be working :) >>>>> >>>>> Now tomcat is understanding Slide user database, tomcat-users.xml not >>>>> required anymore for authentication. >>>>> >>>>> I was checking this using DAVExplorer but now I need to implement and >>>>> use API for authentication, so >>>>> >>>>> Is that JAAS package will help me in this, shall I need to use those >>>>> API for authentication from my custom jsp client? >>>>> Do you have any idea how can I directly use same authentication way >>>>> like DAVExplorer using? >>>>> >>>>> >>>>> Regards, >>>>> Satish >>>>> >>>>> >>>>> ----- Original Message ----- >>>>> *From:* kiltesh patel <mailto:[EMAIL PROTECTED]> >>>>> *To:* Slide Users Mailing List >>>>> <mailto:slide-user@jakarta.apache.org> ; Satish >>>>> <mailto:[EMAIL PROTECTED]> >>>>> *Sent:* Saturday, September 15, 2007 10:15 PM >>>>> *Subject:* Re: Authentication with Slide - Slide vs tomcat Realm >>>>> >>>>> Hi Satish, >>>>> >>>>> try this... >>>>> >>>>> 1. 5) Set environment variable >>>>> CATALINA_OPTS=-Djava.security.auth.login >>>>> .config=$CATALINA_HOME/conf/jaas >>>>> .config >>>>> >>>>> In place of = use == to set catalina_opts >>>>> >>>>> 2. Also, appName="slide_login" name should exactly match in >>>>> config.jaas file >>>>> >>>>> slide_login {.... >>>>> >>>>> 3. You can also try using JAVA_OPTS instead of CATALINA_OPTS >>>>> >>>>> 4. Also, check your classpath if it finds jaas.config and >>>>> userClassNames="org.apache.slide.jaas.spi >>>>> .SlidePrincipal" >>>>> roleClassNames="org.apache.slide.jaas.spi.SlideRole" >>>>> are in classpah. >>>>> >>>>> Regards >>>>> Kiltesh >>>>> >>>>> >>>>> >>>>> On 9/15/07, *Satish* <[EMAIL PROTECTED] >>>>> <mailto:[EMAIL PROTECTED]>> wrote: >>>>> >>>>> Hi Arne >>>>> >>>>> Using your guidelines I tried configuring JAAS with Slide. >>>>> >>>>> I did something like: >>>>> >>>>> 1) >>>>> Configure tomcat web.xml to have >>>>> <Context path="/slide" debug="0" privileged="true" >>>>> useNaming="true"> >>>>> <Realm className="org.apache.catalina.realm.JAASRealm >>>>> > " > >>>>> appName="slide_login" >>>>> >>>>> >>>>> >>> userClassNames="org.apache.slide.jaas.spi.SlidePrincipal" >>> >>> >>>>> roleClassNames="org.apache.slide.jaas.spi.SlideRole" >>>>> name="Slide DAV Server" >>>>> useContextClassLoader="false" /> >>>>> </Context> >>>>> in Host. >>>>> >>>>> 2) Copied jaas.config file in conf folder of tomcat >>>>> >>>>> 3) Copied slide-jaas-2.1.jar in \\Tomcat 5.5\common\lib folder >>>>> >>>>> 4) Uncommented <security-constraint> from Slide web.xml >>>>> >>>>> 5) Set environment variable >>>>> >>>>> >>>>> >>> CATALINA_OPTS=-Djava.security.auth.login.config=$CATALINA_HOME/conf/jaas >>> >>> >>>>> .config >>>>> >>>>> Retsrated tomcat server and then tried connecting Slide using >>>>> Web DAV Explorer client provided by Slide, but when I tried >>>>> login, tomcat log says: >>>>> >>>>> Unable to locate a login configuration...here is the error for >>>>> details >>>>> >>>>> Sep 15, 2007 8:26:27 PM org.apache.catalina.realm.JAASRealm >>>>> authenticate >>>>> SEVERE: Unexpected error >>>>> java.lang.SecurityException: Unable to locate a login >>>>> configuration >>>>> at com.sun.security.auth.login.ConfigFile.<init>(Unknown >>>>> > Source) > >>>>> at >>>>> sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native >>>>> Method) >>>>> at >>>>> sun.reflect.NativeConstructorAccessorImpl.newInstance(Unknown >>>>> Source) >>>>> at >>>>> >>>>> >>>>> >>> sun.reflect.DelegatingConstructorAccessorImpl.newInstance(Unknown >>> >>> >>>>> Source) >>>>> at java.lang.reflect.Constructor.newInstance(Unknown Source) >>>>> at java.lang.Class.newInstance0(Unknown Source) >>>>> at java.lang.Class.newInstance (Unknown Source) >>>>> at javax.security.auth.login.Configuration$3.run(Unknown >>>>> > Source) > >>>>> at java.security.AccessController.doPrivileged(Native Method) >>>>> at >>>>> >>>>> > javax.security.auth.login.Configuration.getConfiguration(Unknown > >>>>> Source) >>>>> at javax.security.auth.login.LoginContext$1.run(Unknown >>>>> > Source) > >>>>> at java.security.AccessController.doPrivileged(Native Method) >>>>> at javax.security.auth.login.LoginContext.init(Unknown Source) >>>>> at javax.security.auth.login.LoginContext .<init>(Unknown >>>>> >>>>> >>> Source) >>> >>> >>>>> at >>>>> >>>>> >>>>> >>> org.apache.catalina.realm.JAASRealm.authenticate(JAASRealm.java:355) >>> >>> >>>>> at >>>>> >>>>> >>>>> > org.apache.catalina.authenticator.BasicAuthenticator.authenticate(BasicAuthe > >>> nticator.java:181) >>> >>> >>>>> at org.apache.catalina.authenticator.AuthenticatorBase.invoke >>>>> (AuthenticatorBase.java:446) >>>>> at >>>>> >>>>> >>>>> > org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:126 > >>> ) >>> >>> >>>>> at >>>>> >>>>> >>>>> > org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:105 > >>> ) >>> >>> >>>>> at org.apache.catalina.core.StandardEngineValve.invoke >>>>> (StandardEngineValve.java:107) >>>>> at >>>>> >>>>> >>>>> > org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:148) > >>>>> at >>>>> >>>>> >>>>> > org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:825) > >>>>> at >>>>> >>>>> >>>>> > org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConne > >>> ction >>> >>> >>>>> (Http11Protocol.java:738) >>>>> at >>>>> >>>>> >>>>> > org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket(PoolTcpEndpoint.jav > >>> a:526) >>> >>> >>>>> at >>>>> >>>>> >>>>> > org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt(LeaderFollowerWo > >>> rkerThread.java:80) >>> >>> >>>>> at >>>>> >>>>> >>>>> > org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.jav > >>> a:684) >>> >>> >>>>> at java.lang.Thread.run(Unknown Source) >>>>> Caused by: java.io.IOException: Unable to locate a login >>>>> configuration >>>>> at com.sun.security.auth.login.ConfigFile.init (Unknown >>>>> > Source) > >>>>> ... 27 more >>>>> >>>>> >>>>> Do you have idea if I am missing out anything here. >>>>> >>>>> >>>>> Regards, >>>>> Satish >>>>> >>>>> >>>>> >>>>> ----- Original Message ----- >>>>> From: "Arne v.Irmer" < [EMAIL PROTECTED] >>>>> <mailto:[EMAIL PROTECTED]>> >>>>> To: "Slide Users Mailing List" <slide-user@jakarta.apache.org >>>>> <mailto:slide-user@jakarta.apache.org>> >>>>> Sent: Friday, September 14, 2007 4:22 PM >>>>> Subject: Re: Authentication with Slide - Slide vs tomcat Realm >>>>> >>>>> >>>>> > Hi Satish, >>>>> > things are easy, if you look at the used technics: Silde is >>>>> a servlet in >>>>> > tomcat and uses the authentication mechanism of tomcat. This >>>>> includes >>>>> > such nice things like the sso-Valve. >>>>> > What you have to implement a user management that does both: >>>>> > 1. Creating/Deleting the user in silde by just >>>>> creating/deleting a >>>>> > collection with the user name in /user (default value). Tip: >>>>> Look at the >>>>> > powerful roles mechanism in slide. >>>>> > 2. Doing the JAAS-Authentication. >>>>> > This is how we did it here. >>>>> > >>>>> > Yours >>>>> > Arne >>>>> > >>>>> > Satish schrieb: >>>>> > > Hey Arne >>>>> > > >>>>> > > Thanks for quick reponse. >>>>> > > >>>>> > > Do you mean here that I should take steps below to >>>>> implemnt authetication, >>>>> > > >>>>> > > - configure Slide realm, configure tomcat to use Slide >>>>> users for >>>>> > > authentication >>>>> > > - configure JAAS for tomcat >>>>> > > - use JAAS API to authenticate the requests, >>>>> > > so here JAAS will ask tomcat for authetication -> tomcat >>>>> will check Slide >>>>> > > user database >>>>> > > >>>>> > > Is is somthing gonna happen...? >>>>> > > >>>>> > > Thanks. >>>>> > > >>>>> > > >>>>> > > Regards, >>>>> > > Satish >>>>> > > >>>>> > > >>>>> > > ----- Original Message ----- >>>>> > > From: "Arne v.Irmer" <[EMAIL PROTECTED] >>>>> <mailto:[EMAIL PROTECTED]>> >>>>> > > To: "Slide Users Mailing List" < >>>>> slide-user@jakarta.apache.org >>>>> <mailto:slide-user@jakarta.apache.org>> >>>>> > > Sent: Friday, September 14, 2007 2:50 PM >>>>> > > Subject: Re: Authentication with Slide - Slide vs tomcat >>>>> >>>>> >>> Realm >>> >>> >>>>> > > >>>>> > > >>>>> > > >>>>> > >> Hi Satish, >>>>> > >> look for JAAS-Authentication that is a standard API that >>>>> works pretty >>>>> > >> well with tomcat. A good introduction is found at >>>>> > >> >>>>> >>>>> > http://www.javaworld.com/javaworld/jw-09-2002/jw-0913-jaas.html > >>>>> > >> >>>>> > >> Yours >>>>> > >> Arne >>>>> > >> >>>>> > >> Satish schrieb: >>>>> > >> >>>>> > >>> Hi >>>>> > >>> >>>>> > >>> I need to authentication with Slide, there are two ways >>>>> I can see >>>>> > >>> >>>>> > >>> I am thinking of using Slide realm and configuring >>>>> tomcat to use Slide >>>>> > >>> >>>>> > > user database for authentication. >>>>> > > >>>>> > >>> Otherwise if I rely completely on tomcat realm, typical >>>>> tomcat-users.xml >>>>> > >>> >>>>> > > file based, authetication, I need to add user two places - >>>>> Slide and >>>>> > > tomcat-user, which is problem. >>>>> > > >>>>> > >>> Can any body suggests on >>>>> > >>> #1 how can I configure tomcat to use the Slide users for >>>>> authentication? >>>>> > >>> #2 how can I actually autheticate request of tomcat >>>>> programatically, is >>>>> > >>> >>>>> > > any API available? >>>>> > > >>>>> > >>> What I am looking for is authenticating user with Slide. >>>>> > >>> >>>>> > >>> Any suggestion is valuable for me. >>>>> > >>> >>>>> > >>> Regards, >>>>> > >>> Satish >>>>> > >>> >>>>> > >>> Disclaimer: >>>>> > >>> This e-mail may contain Privileged/Confidential >>>>> information and is >>>>> > >>> >>>>> > > intended only for the individual(s) named. Any review, >>>>> retransmission, >>>>> > > dissemination or other use of, or taking of any action in >>>>> reliance upon this >>>>> > > information by persons or entities other than the intended >>>>> recipient is >>>>> > > prohibited. Please notify the sender, if you have received >>>>> this e-mail by >>>>> > > mistake and delete it from your system. Information in >>>>> this message that >>>>> > > does not relate to the official business of the company >>>>> shall be understood >>>>> > > as neither given nor endorsed by it. E-mail transmission >>>>> cannot be >>>>> > > guaranteed to be secure or error-free. The sender does not >>>>> accept liability >>>>> > > for any errors or omissions in the contents of this >>>>> message which arise as a >>>>> > > result of e-mail transmission. If verification is required >>>>> please request a >>>>> > > hard-copy version. Visit us at >>>>> http://www.harbinger-systems.com/ >>>>> > > >>>>> > >>> >>>>> > >>> >>>>> > >> >>>>> >>>>> >>> --------------------------------------------------------------------- >>> >>> >>>>> > >> To unsubscribe, e-mail: >>>>> [EMAIL PROTECTED] >>>>> <mailto:[EMAIL PROTECTED]> >>>>> > >> For additional commands, e-mail: >>>>> [EMAIL PROTECTED] >>>>> <mailto:[EMAIL PROTECTED]> >>>>> > >> >>>>> > >> >>>>> > > >>>>> > > Disclaimer: >>>>> > > This e-mail may contain Privileged/Confidential >>>>> information and is intended only for the individual(s) named. >>>>> Any review, retransmission, dissemination or other use of, or >>>>> taking of any action in reliance upon this information by >>>>> persons or entities other than the intended recipient is >>>>> prohibited. Please notify the sender, if you have received >>>>> this e-mail by mistake and delete it from your system. >>>>> Information in this message that does not relate to the >>>>> official business of the company shall be understood as >>>>> neither given nor endorsed by it. E-mail transmission cannot >>>>> be guaranteed to be secure or error-free. The sender does not >>>>> accept liability for any errors or omissions in the contents >>>>> of this message which arise as a result of e-mail >>>>> transmission. If verification is required please request a >>>>> hard-copy version. Visit us at >>>>> > http://www.harbinger-systems.com/ > >>>>> > > >>>>> > >>>>> > >>>>> >>>>> >>> --------------------------------------------------------------------- >>> >>> >>>>> > To unsubscribe, e-mail: >>>>> [EMAIL PROTECTED] >>>>> <mailto:[EMAIL PROTECTED]> >>>>> > For additional commands, e-mail: >>>>> [EMAIL PROTECTED] >>>>> <mailto:[EMAIL PROTECTED]> >>>>> > >>>>> Disclaimer: >>>>> This e-mail may contain Privileged/Confidential information >>>>> and is intended only for the individual(s) named. Any review, >>>>> retransmission, dissemination or other use of, or taking of >>>>> any action in reliance upon this information by persons or >>>>> entities other than the intended recipient is prohibited. >>>>> Please notify the sender, if you have received this e-mail by >>>>> mistake and delete it from your system. Information in this >>>>> message that does not relate to the official business of the >>>>> company shall be understood as neither given nor endorsed by >>>>> it. E-mail transmission cannot be guaranteed to be secure or >>>>> error-free. The sender does not accept liability for any >>>>> errors or omissions in the contents of this message which >>>>> arise as a result of e-mail transmission. If verification is >>>>> required please request a hard-copy version. Visit us at >>>>> http://www.harbinger-systems.com/ >>>>> >>>>> >>>>> >>>>> Disclaimer: >>>>> This e-mail may contain Privileged/Confidential information and >>>>> is intended only for the individual(s) named. Any review, >>>>> >>>>> >>> retransmission, d >>> >>> >>>>> issemination or other use of, or taking of any action in reliance upon >>>>> >>>>> >>> this >>> >>> >>>>> information by persons or entities other than the intended recipient >>>>> > is > >>> proh >>> >>> >>>>> ibited. Please notify the sender, if you have received this e-mail by >>>>> >>>>> >>> mistak >>> >>> >>>>> e and delete it from your system. Information in this message that >>>>> > does > >>> not >>> >>> >>>>> relate to the official business of the company shall be understood as >>>>> >>>>> >>> neithe >>> >>> >>>>> r given nor endorsed by it. E-mail transmission cannot be guaranteed >>>>> > to > >>> be s >>> >>> >>>>> ecure or error-free. The sender does not accept liability for any >>>>> > errors > >>> or >>> >>> >>>>> omissions in the contents of this message which arise as a result of >>>>> >>>>> >>> e-mail >>> >>> >>>>> transmission. If verification is required please request a hard-copy >>>>> >>>>> >>> version >>> >>> >>>>> . Visit us at http://www.harbinger-systems.com/ >>>>> >>>>> >>>>> >>>>> >>>>> >>>>> >>>> -- >>>> Dipl.-Phys. Arne v.Irmer >>>> Medienzentrum Universität Dortmund >>>> Am Hauert 12a >>>> 44227 Dortmund >>>> Tel.: ++49 231 755 7127 >>>> Fax : ++49 231 755 4597 >>>> >>>> --------------------------------------------------------------------- >>>> To unsubscribe, e-mail: [EMAIL PROTECTED] >>>> For additional commands, e-mail: [EMAIL PROTECTED] >>>> >>>> >>>> >>> Disclaimer: >>> This e-mail may contain Privileged/Confidential information and is >>> > intended only for the individual(s) named. Any review, retransmission, > dissemination or other use of, or taking of any action in reliance upon this > information by persons or entities other than the intended recipient is > prohibited. Please notify the sender, if you have received this e-mail by > mistake and delete it from your system. Information in this message that > does not relate to the official business of the company shall be understood > as neither given nor endorsed by it. E-mail transmission cannot be > guaranteed to be secure or error-free. The sender does not accept liability > for any errors or omissions in the contents of this message which arise as a > result of e-mail transmission. If verification is required please request a > hard-copy version. Visit us at http://www.harbinger-systems.com/ > >> -- >> Dipl.-Phys. Arne v.Irmer >> Medienzentrum Universität Dortmund >> Am Hauert 12a >> 44227 Dortmund >> Tel.: ++49 231 755 7127 >> Fax : ++49 231 755 4597 >> >> --------------------------------------------------------------------- >> To unsubscribe, e-mail: [EMAIL PROTECTED] >> For additional commands, e-mail: [EMAIL PROTECTED] >> >> > > Disclaimer: > This e-mail may contain Privileged/Confidential information and is intended > only for the individual(s) named. Any review, retransmission, dissemination > or other use of, or taking of any action in reliance upon this information by > persons or entities other than the intended recipient is prohibited. Please > notify the sender, if you have received this e-mail by mistake and delete it > from your system. Information in this message that does not relate to the > official business of the company shall be understood as neither given nor > endorsed by it. E-mail transmission cannot be guaranteed to be secure or > error-free. The sender does not accept liability for any errors or omissions > in the contents of this message which arise as a result of e-mail > transmission. If verification is required please request a hard-copy version. > Visit us at http://www.harbinger-systems.com/ > -- Dipl.-Phys. Arne v.Irmer Medienzentrum Universität Dortmund Am Hauert 12a 44227 Dortmund Tel.: ++49 231 755 7127 Fax : ++49 231 755 4597 --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]