But, you will run into problems if you use JNDIRealm with SSL (ldap with ssl - Container Managed Security)....use mozilla-java sdk if you prefer to do this way. http://www.mozilla.org/directory
On 7/27/05, Nili Adoram <[EMAIL PROTECTED]> wrote: > > What about single sign-on for web applications and PHP? > > Does tomcat delegate credentials back to Apache so Apache would not > authenticate again? > > Thanks > Nili > > On Wed, 27 Jul 2005 13:05:49 +0100, Raghupathy,Gurumoorthy > <[EMAIL PROTECTED]> wrote: > > > If you use > > Form-based authentication (login page) then tomcat needs to do it... > > > > Regards > > Guru > > > > -----Original Message----- > > From: Raghupathy,Gurumoorthy > > [mailto:[EMAIL PROTECTED] > > > > Sent: 27 July 2005 13:02 > > To: 'Tomcat Users List' > > Subject: RE: tomcat 5 - apache 2 - ldap > > > > > > Ask tomcat .... Because if sometime you change the webserver ( in the > > worst > > case ) then you don't need to change anything :) > > > > Tomcat has good support for OpenLdap ... ( I have been using it for > 1 > > year > > ) > > > > Guru > > > > > > -----Original Message----- > > From: Nili Adoram [mailto:[EMAIL PROTECTED] > > Sent: 27 July 2005 12:54 > > To: [email protected] > > Subject: tomcat 5 - apache 2 - ldap > > > > > > Hi, > > > > I need to setup the following system: > > > > - Tomcat 5.5.9 > > - Apache 2 (using mod_jk) > > - Redhat 7.3 > > - User authentication against Ldap (using OpenLdap) > > - Single sign-on (e.g. if the user is authenticated for entering a web > > application he will not have to authenticate again when browsing a PHP > > page) > > - Form-based authentication (login page) > > > > I still need to figure out the following: > > > > - Should Tomcat or Apache do ldap authentication ? > > - How are credentials passed between Tomcat and Apache (to ensure > > single > > sign-on) ? > > > > Your help is appreciated. > > > > > > -- > Nili Adoram ([EMAIL PROTECTED]) > SEMPRE Team, R&D > Qlusters Inc. > 972-3-6081976 > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > >
