Hi Mark, Very good, thank you for that direction. Both approaches you suggest seem appropriate, but I was unable to find any guide that describes how to provide/implement a JASPIC module, let alone that within Tomcat. I am hoping a custom Authenticator via extending AuthenticatorBase (FormAuthenticator in particular) will do the trick, but I don't know just yet.
Thank you for the help. Doug On Fri, Aug 26, 2016 at 5:07 AM, Mark Thomas <ma...@apache.org> wrote: > On 26/08/2016 06:54, Doug Gschwind wrote: > > Hello, > > <snip/> > > > In my research today on the topic, this appears to be much more difficult > > than I would expect in Tomcat 8.5, so I can only conclude I am missing > > something. Here are the two potential solutions I have found : > > > > 1) Provide our own implementation of the org.apache.catalina.Realm > > The split isn't completely clean but generally Realm's provide > authorization, not authentication. > > Very roughly, Authenticators obtain the user name, password etc and > Realms validate them against a credential store. > > You probably want to implement a custom Authenticator (extending > AuthenticatorBase). > > Depending on what you are trying to do, you might need a custom > Authenticator and a custom Realm. > > A more portable solution would be to implement a JASPIC module. > > HTH, > > Mark > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org > >
