I'm not positive if you can make an NT Login, but TC 4.1.x has a JAASRealm class which extends the Realm class.
I didn't see any docs except the source. You probably want to get familiar with Realms first, then tackle JAASRealm. As a side not, if you are using Active Directory, you could use JNDIRealm and connect to through LDAP to AD. If you get JAAS to work, post it so we all can learn. - Andrew > -----Original Message----- > From: John Gentilin [mailto:[EMAIL PROTECTED]] > Sent: Friday, July 26, 2002 5:15 PM > To: Apache TomCat Project > Subject: Help, Can I Use JAAS in the Tomcat 3.3 /4.0 enviorment > > > In a Servlet design I am working on, I want to implement a > security policy where the Servlet mechanisms knows if the > user is allowed and what roles they are allowed to operate > in, but falls back to the native O/S to validate the users > password. The JAAS interface seems like the perfect mechanism > using the NT Login mechanism along with a Login manager that > I would implement. > > The question I have is, can JAAS be implemented in a Servlet > environment. It appears that the classes need to be present > at JVM boot time and not in the WEB-INF/lib directory (an > issue with 1.3 JVM's) and an apparent platform issue with > providing policy files. i.e. The need to load the > .java2.policy from the user home directory which has little > context in a servlet environment. It seems like I can get it > to work but it would require a lot of tweaking with the > System JVM and Tomcat installation and not something that is > generically available at an ISP. > > Any suggestions would be greatly appreciated. > > Thanks in advance > John G > > > > > > -- > To unsubscribe, e-mail: > <mailto:tomcat-user-> [EMAIL PROTECTED]> > For > additional commands, > e-mail: <mailto:[EMAIL PROTECTED]> > > -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
