Another thing to look at is that it would be good to have it iterate through
all userPassword values in the user's entry if you do it the system way.
i.e. the userPassword attribute might be multivalued and might contain the
password in multiple different hash formats. For example, it might have it
in crypt format and also in MD5 format. I was just looking at the source
code and it looked like it was only checking the first value.
Thanks, Jon
----- Original Message -----
From: "Craig R. McClanahan" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, August 23, 2001 3:42 PM
Subject: Re: JNDIRealm questions
>
>
> On Thu, 23 Aug 2001, Jonathan Eric Miller wrote:
>
> > Date: Thu, 23 Aug 2001 15:35:09 -0500
> > From: Jonathan Eric Miller <[EMAIL PROTECTED]>
> > Reply-To: [EMAIL PROTECTED]
> > To: [EMAIL PROTECTED]
> > Subject: Re: JNDIRealm questions
> >
> > Thanks, can you confirm that binding as the user rather as system is
> > supported?
> >
>
> At present it does not :-(.
>
> There are some proposed patches that provide this facility on the
> developer mailing list, and I plan to integrate those "soon".
>
> > Jon
> >
>
> Craig
>
>
> > ----- Original Message -----
> > From: "Craig R. McClanahan" <[EMAIL PROTECTED]>
> > To: <[EMAIL PROTECTED]>
> > Sent: Thursday, August 23, 2001 3:21 PM
> > Subject: Re: JNDIRealm questions
> >
> >
> > >
> > >
> > > On Thu, 23 Aug 2001, Jonathan Eric Miller wrote:
> > >
> > > > Date: Thu, 23 Aug 2001 15:08:12 -0500
> > > > From: Jonathan Eric Miller <[EMAIL PROTECTED]>
> > > > Reply-To: [EMAIL PROTECTED]
> > > > To: [EMAIL PROTECTED]
> > > > Subject: Re: JNDIRealm questions
> > > >
> > > > I did a search of the Tomcat Developer List archive and found that
it
> > looks
> > > > like #2 is possible (or was only planned and isn't yet
implemented?),
> > so,
> > > > that's cool. Now, if I could only find the documentation on how to
use
> > > > this... ;-) Craig, if you're listening, can you post an example
Realm
> > entry
> > > > for JNDIRealm that would go in server.xml? If there were a
> > JNDIRealm.howto,
> > > > like the JDBCRealm.howto, that would be great. I'm guessing that you
> > guys
> > > > just haven't had a chance to do that yet. I'd being willing to write
one
> > up
> > > > similar to the JDBC one once I get it figured out. A sample entry
for a
> > user
> > > > and a role in LDIF format would also be very helpful. Also, I like
the
> > > > example JDBCRealm entries that are currently in server.xml, if there
was
> > a
> > > > sample one for JNDIRealm that would be great.
> > > >
> > > > Jon
> > > >
> > >
> > > I'm about halfway through a new HOWTO page that covers all three realm
> > > implementations -- it should be done by next week. It will need to
> > > include more than one example, because there's more than one "usual"
way
> > > that people populate their LDAP servers.
> > >
> > > Craig
> >
> >
> >
>
>
