Hi! Yes, I am using httpd in front.
To perform Shibboleth authentication, we are using Apache httpd to front the Tomcat servlet environment. The Shibboleth service provider installs as an Apache module (mod_shib) and a supporting daemon process (shibd). The Apache server communicates with Tomcat using AJP/1.3 protocol via the JK connector. The above configuration is sufficient for Tomcat servlets to be able to retrieve the authenticated username using request.getRemoteUser(), but does not of itself establish servlet invocation as being authenticated. For this, it is necessary to place a <security-constraint> on the context URI that is used to invoke the servlet. This is done in the web applications web.xml file. I was wondering if there is already something developed for this (JASS realm, etc). Thanks again, Lucia -----Original Message----- From: Lucia Moreno Lopez Sent: Wednesday, November 05, 2008 3:23 PM To: 'users@tomcat.apache.org' Subject: how to integrate Shibboleth and Tomcat Hello, I need to integrate Shibboleth and Tomcat. We are using tomcat 5.5.23, mod_jk connector 1.2.23 and the reference implementation of Shibboleth version 2.0. We're running on a Linux RedHat Enterprise environment. Do you know any JAAS realm open source implementation or any other way to implement authentication in tomcat using shibboleth? Thanks in advance for your help, Lucia --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]