-----------------------------
Please read the FAQ!
<http://java.apache.org/faq/>
-----------------------------
> I've been trying to figure out if apache is capable of doing this, and I've
> been unable to find anything in the documentation on apache.org. Basically, I
> need to be able to have apache perform user authentication as normal, but then
> invoke a servlet with the username and password as part of the
> HttpServletRequest. The servlet would then store some pertinent information in
> the current HttpSession object. If the HttpSession expires, apache should ask
> the user to login again. Is this possible? I've seen similar functionality in
> sun's webaccess (for e-mail, not the personal webaccess browser) product. And
> ideas or pointers would be greatly appreciated. Thanks!
I'm not able to divulge any code, but I'd be happy to give you an idea
about what we have done here.
We took the standard postgres authentication module (which itself was
probably derived from the mod_auth_db.c module). And simply added to it
some lines with set 'headers_in' table. An example line would be...
ap_table_setn(r->headers_in, "REMOTE_USER", ap_pstrdup(r->pool,
username));
where 'username' was a char* variable defined/set elsewhere in the
authentication module.
We then set one of our document directories to have authentication.
Then we use .shtml files in that directory, with only a <servlet> tag.
So the order of execution becomes...
mod_auth_pg -> mod_jserv -> JservSSI -> Our Servlet
And from "Our Servlet" we can then get the "REMOTE_USER" or whatever
other headers we set in the mod_auth module.
---- Cris J H
--
--------------------------------------------------------------
Please read the FAQ! <http://java.apache.org/faq/>
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
Archives and Other: <http://java.apache.org/main/mail.html/>
Problems?: [EMAIL PROTECTED]
