-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi,
I try to authentificate to a web App by Client.Cert.
I get these error message:
"HTTP Status 401 - Cannot authenticate with the provided credentials"
Here are my settings:
web.xml:
<security-constraint>
<web-resource-collection>
<web-resource-name>certLogin.jsp</web-resource-name>
<url-pattern>/idp/certLogin.jsp</url-pattern>
<http-method>POST</http-method>
</web-resource-collection>
<auth-constraint>
<role-name>SourceIDuser</role-name>>
</auth-constraint>
</security-constraint>
<login-config>
<auth-method>CLIENT-CERT</auth-method>
<realm-name>SourceID</realm-name>
</login-config>
<security-role>
<description><![CDATA[SourceID Authenticated User]]></description>
<role-name>SourceIDuser</role-name>
</security-role>
tomcat.users:
<tomcat-users>
<role rolename="SourceIDuser"/>
<user
username="[EMAIL PROTECTED]"
password="null" roles="SourceIDuser"/>
<user username="markus" password="test" roles="SourceIDuser"/>
</tomcat-users>
It works fine with Basic authentication!
And it works fine with only set clientAuth="true".
But I only want to secure a part of my WebApp,
so clientAuth="true" is not helpful.
Any help would be greatly appreciated.
Markus
- --
Markus Linnemann
ifis - Institut fÃr Internet-Sicherheit, FH Gelsenkirchen
Tel.: 0209 9596 797
www.internet-sicherheit.de
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (MingW32)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iD8DBQFCb5VohyPbXYfivmMRAurbAJ9SQAqlK+3SXqsYaIx9NsSBjcR6xACcCs+L
rg0SJ+M1jyRtex9YDP9DBIM=
=5CuL
-----END PGP SIGNATURE-----
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
