zhongliang zhang wrote:
> Hi,Mark,
> I have to turn to you again.
> I encounter the problem with configuring the Digested-Password in the
> JDBCRealm.
> The JDBCRealm fragment of the $TOMCAT_HOME/conf/server.xml is shown as
> followed:
> <Realm className="org.apache.catalina.realm.JDBCRealm"
> driverName="com.mysql.jdbc.Driver"
> connectionURL="jdbc:mysql://localhost/test" connectionName="root"
> connectionPassword="root" userTable="users" userNameCol="user_name"
> userCredCol="user_pass" userRoleTable="user_roles"
> roleNameCol="role_name" />
> and in the $TOMCAT_HOME/conf/web.xml,I did the following security-constraint:
> <security-constraint> <web-resource-collection>
> <web-resource-name>all</web-resource-name> <url-pattern>/*</url-pattern>
> </web-resource-collection> <auth-constraint>
> <role-name>customized</role-name>
> </auth-constraint></security-constraint><login-config>
> <auth-method>DIGEST</auth-method>
> <realm-name>JDBCRealm</realm-name></login-config>
> it works with mysql database which is just for testing.Now in my database
> table users,I insert a record:
> user_name:zhangzhongl
> user_pass:zhangzhongl
> and in the database table,I insert a record:
> role_name:customized
> username:zhangzhongl
> So,it works before I added the digest attribute to the <Realm> element with
> value "SHA" or "MD5".
OK, so far so good. DIGEST auth is working with cleartext passwords stored
in the database.
> After I added the digest attribute,
> I copied the tomcat-juli.jar from $TOMCAT_HOME/bin to $TOMCAT_HOME/lib,then
> start up,
Not sure why you needed to do this.
> after I entered the username zhangzhongl and clear-text password
> (Now,in the database,I stored the password with SHA encrypted form),
> it does now work,which means I can not enter the tomcat welcome page.
I assume you mean it doesn't work here. OK. The important thing is how you
generated the SHA encrypted password. To use DIGEST *and* digested
passwords you need to do:
java org.apache.catalina.realm.RealmBase -a {algorithm}
{username}:{realm}:{cleartext-password}
For you example, assuming a password of secret:
java org.apache.catalina.realm.RealmBase -a SHA1 zhangzhongl:JDBCRealm:secret
Note this should all be on the same line.
Full details at
http://tomcat.apache.org/tomcat-6.0-doc/realm-howto.html#Digested%20Passwords
HTH,
Mark
>
> I do not know what the reason is.
> Please do me a favor.
> thanks so much!> >
> http://tomcat.apache.org/tomcat-6.0-doc/realm-howto.html#Digested%20Passwords>
> > Mark> >
> ---------------------------------------------------------------------> To
> start a new topic, e-mail: [email protected]> To unsubscribe, e-mail:
> [EMAIL PROTECTED]> For additional commands, e-mail: [EMAIL PROTECTED]>
> _________________________________________________________________
> Connect to the next generation of MSN Messenger
> http://imagine-msn.com/messenger/launch80/default.aspx?locale=en-us&source=wlmailtagline
---------------------------------------------------------------------
To start a new topic, e-mail: [email protected]
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
