I think, if you want to have a real domain authentication (automatically authenticating users) you will have to use NTLM. Btw, one thing I forgot to mention before, NTLM is I think only supported in Internet Explorer (verisons 5.0 + ).
But in my earlyer respond to this matter, the problem is you can not authenticate against remote server (from a server) with out getting the credidentals from the user. It might be possible to forward something, like an Authenticated flag or the String resulting from the handshake, I dont know if it will work. I am not sure you can get the username/password/domain combo all out of the ADSI (can you get passwords ?). -reynir.net > -----Original Message----- > From: Durham David Cntr 805CSS/SCBE > [mailto:[EMAIL PROTECTED]] > Sent: 19. ágúst 2002 17:52 > To: Tomcat Users List > Subject: RE: Design question > > > Another option might be to use LDAP to query a windows active > directory, if you're using that. This would provide a way > for you to deal with a users permissions within your app. I > haven't done this, and don't ever want to, but I think it's doable. > > -Dave > > > -----Original Message----- > > From: Reynir Hübner [mailto:[EMAIL PROTECTED]] > > Sent: Monday, August 19, 2002 12:29 PM > > To: Tomcat Users List > > Subject: RE: Design question > > > > > > Hi, > > > > For this problem I would say it would be best to use IIS > > and Tomcat combo Because IIS can authenticate users by using > > NTLM authentication scheme. This means that users with in > > your domain can be automatically authenticated (by using > > Windows Intergrated Authenticaton in IIS). > > > > There are several ways to upload files to a server, one is > > by using MultiPart Requests (Method POST). All you need is a > > MultiPartRequestParser and then you can parse the files from > > the request and do what ever you like with em, such as > > upload the files to a remote server. If you need to use NTLM > > authorisation for this It can get little bit complicated. In > > theory you should be able to do it anyway, but not with out > > the user giving out his username/password/domain combination, > > to authenticate against the remote server. Then for step 2 > > (downloading files from a remote server authenticated with > > NTLM) you could write a servlet that acts similar to a proxy. > > > > This could be achived by using the > > http://www.innovation.ch/java/HTTPClient/ > > along with > > http://www.innovation.ch/java/ntlm.html > > and last but not least > > http://www.luigidragone.com/networking/ntlm.html > > > > hope it helps > > [EMAIL PROTECTED] > > > > > > > > > > > > > > > > > > > -----Original Message----- > > > From: Raju Lokhande [mailto:[EMAIL PROTECTED]] > > > Sent: 19. ágúst 2002 17:01 > > > To: <Tomcat Users List > > > Subject: Design question > > > > > > > > > Greetings everybody, > > > I am doing some research on possibility of using Tomcat to > > > do a project. General requirements as follows > > > 1. A user will login to the web application and upload a file > > > to a remote server. He or she can only access his or her > > > WIN2K/NT domain to upload this file. > > > 2. User will download a file or a number of files from the > > > remote server - again from his or her domain. > > > I was told that I can do this job using Java Servlet and IBM > > > Websphere or BEA Weblogic. > > > I am not sure if this is possible in Tomcat. Has anybody done > > > similar work using Tomcat. Can you share your experiences please? > > > Thanks > > > Raju Lokhande > > > > > > > > > > > > ************************************************************** > > > *********** > > > This message, together with any attachments, is intended only > > > for the use of the individual or entity to which it is > addressed. It > > > may contain information that is confidential and prohibited from > > > disclosure. If you are not the intended recipient, you are > > > hereby notified that any dissemination or copying of this > > > message or any attachment is strictly prohibited. If you have > > > received this message in error, please notify the original sender > > > immediately by telephone or by return e-mail and delete this > > > message along with any attachments, from your computer. > > > Thank you. > > > ************************************************************** > > > *********** > > > > > > > > > -- > > > To unsubscribe, e-mail: > > > <mailto:[EMAIL PROTECTED]> > > > For additional commands, e-mail: > > > <mailto:[EMAIL PROTECTED]> > > > > > > > > > > -- > > To unsubscribe, e-mail: > > <mailto:[EMAIL PROTECTED]> > > For additional commands, e-mail: > > <mailto:[EMAIL PROTECTED]> > > > > > > -- > To unsubscribe, e-mail: > <mailto:[EMAIL PROTECTED]> > For additional commands, e-mail: > <mailto:[EMAIL PROTECTED]> > > -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>