kgrjb, Tomcat's Container Managed Authentication mechanism can not be controllded (for a good reason) by a web application. The idea is that the container provides these services to applications. The applications then can ask to use them. Furthermore Java's servlet spec does not specify how a container is to implement these services, only that they must be provided. If you want to alter the way Tomcat does authentication/authorization, then you need to alter the container's security layer. In order to do that, you will need to dig into the Tomcat code to understand how it works. If you need pointers, let me know.
happy coding, cgriffith View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3938648#3938648 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3938648 ------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ JBoss-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/jboss-user
