-----------------------------
Please read the FAQ!
<http://java.apache.org/faq/>
-----------------------------

"Mark E. Ashton" wrote:
> 
> I've been trying to figure out if apache is capable of doing this, and I've
> been unable to find anything in the documentation on apache.org. Basically, I
> need to be able to have apache perform user authentication as normal, but then
> invoke a servlet with the username and password as part of the
> HttpServletRequest. The servlet would then store some pertinent information in
> the current HttpSession object. If the HttpSession expires, apache should ask
> the user to login again. Is this possible? I've seen similar functionality in
> sun's webaccess (for e-mail, not the personal webaccess browser) product. Any
> ideas or pointers would be greatly appreciated. Thanks!
> 
I think (but I might be wrong) that the only way to do it is to have a
servlet to authorize access to itself sending HTTP/403 errors back to
the client if it was never authenticated, and parsing headers for
specific authentication headers...

        Pier
-- 
Pierpaolo Fumagalli - IBM Center for Java Technologies
<mailto:[EMAIL PROTECTED]>   <mailto:[EMAIL PROTECTED]>


--
--------------------------------------------------------------
Please read the FAQ! <http://java.apache.org/faq/>
To subscribe:        [EMAIL PROTECTED]
To unsubscribe:      [EMAIL PROTECTED]
Archives and Other:  <http://java.apache.org/main/mail.html/>
Problems?:           [EMAIL PROTECTED]

Reply via email to