Jake, Thanks for your reply.
You're absolutely right that Tomcat can do the auth instead of Apache (which I've done before; support for it in Tomcat is really great). However, I really need to do it in Apache instead, unfortunately. We're looking at implementing SunOne's Single Sign On solution (Identity Server), and it works via a plug-in to the web server -- Tomcat isn't an option. Any way to access a REMOTE_USER variable set in Apache from Tomcat? Thanks again for your time, and anyone else who can weigh in, Tim On 2/13/03 2:04 PM, "Jake Robb" <[EMAIL PROTECTED]> wrote: > I'm quite sure you can have Tomcat do the auth instead of Apache, and then > you'll have access to the variable. > > Try checking the configuration file (web.xml) of the built-in admin servlet. > It should contain an example of exactly what you want to do. > > -Jake > > ----- Original Message ----- > From: "Tim O'Donnell" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Thursday, February 13, 2003 5:00 PM > Subject: Basic Auth with Apache+Tomcat > > >> Hi all, >> >> I was hoping someone here could confirm a suspicion of mine, as I've been >> unable to uncover a definitive answer searching other forums (web, > javasoft >> forum, mailing list archives). >> >> I've setup Apache web server to perform basic auth against a webapp >> directory in tomcat. I'm using the jk connector to forward certain > contexts >> and jsp requests to Tomcat. The authentication works as expected. However, >> the REMOTE_USER (via request.getRemoteUser() method) environment variable >> returns null when I try to access it from Tomcat. That variable, however, > is >> populated when I inspect it with the printenv cgi-script running in > Apache. >> >> Is this simply because Apache and Tomcat are two separate containers and >> don't share that environment info? Or am I doing something wrong? >> >> I suspect what I'm trying to do isn't possible, but I'd really appreciate >> someone confirming this for me. >> >> Thanks for your time, >> >> Tim >> >> >> --------------------------------------------------------------------- >> To unsubscribe, e-mail: [EMAIL PROTECTED] >> For additional commands, e-mail: [EMAIL PROTECTED] >> > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]