>>Janne/[tomcat expert?] I presume I can set where the tomcat looks for the
jaas
>>and policy files in the above Wiki.xml file ?
The jspwiki.jaas file states:
Tomcat users just need to set the CATALINA_OPTS variable:
// export CATALINA_OPTS="-
Djava.security.auth.login.config==/path-to/jaas.config"
// In addition, it is typically good practice to store jaas.config
// in the Tomcat config directory (CATALINA_HOME/conf).
plus:
Tomcat
// users just need to set the CATALINA_OPTS variable:
//
// export CATALINA_OPTS="-Djava.security.policy=/path-to/jspwiki.policy"
//
// In addition, it is typically good practice to store jspwiki.policy
// in the Tomcat config directory (CATALINA_HOME/conf).
//
Why would you put it in the Wiki.xml file Alex? I am not a tomcat expert
either but it seems that if you look under conf/Catalina/localhost and study
the two example files, you kind of get a feel for what might be expected in
the Wiki.xml file. However, I am interested in the answers to your question
because I do not know if all this moving files around only applies to
container managed solutions or not.
I am not using container managed security on my production environment. I am
using using custom authentication. I am assuming that there is no harm in
this case in leaving the two security files under WEBINF. My jaas file
contains the following lines:
JSPWiki-custom {
com.ecyrd.jspwiki.auth.login.UserDatabaseLoginModule REQUIRED;
};
I am assuming this is safe????
Since it is the first time I am not using an intranet solution I want to
get this right. It is not clear whether the lines below should be removed
altogether, left alone or should i comment the line out below. Anyone know?
JSPWiki-container {
com.ecyrd.jspwiki.auth.login.WebContainerLoginModule SUFFICIENT;
//com.ecyrd.jspwiki.auth.login.CookieAssertionLoginModule SUFFICIENT;
com.ecyrd.jspwiki.auth.login.AnonymousLoginModule SUFFICIENT;
};
>Right now my only script access to tomcat is to shutdown and
> restart
If you have admin rights to your production machine..start with something
simple like make a simple ant script to login to your production machine.
I'll be doing all this as soon as i decide on what the proper strategy is
and will be happy to send you them for you to customize for your needs.
On 9/25/07, Hassan Schroeder <[EMAIL PROTECTED]> wrote:
>
> Alex Samad wrote:
>
> > Oh I do, but it would be nice to have a script to take my war file from
> my dev
> > machine, place it in the production machine - undeploy, remove the tmp
> files,
> > and then redeploy. Right now my only script access to tomcat is to
> shutdown and
> > restart - very much a bull in a china shop approach.
>
> ?! Google "tomcat ant tasks" for info on running those same manager
> functions from a simple build.xml file...
>
> HTH,
> --
> Hassan Schroeder ----------------------------- [EMAIL PROTECTED]
> Webtuitive Design === (+1) 408-938-0567 === http://webtuitive.com
>
> dream. code.
>
> _______________________________________________
> This is the Jspwiki-users mailing list, in which we discuss the
> stable release (even-numbered, 2.4.x, 2.6.x), and user-issues.
> For development discussion, please join jspwiki-dev.
> http://ecyrd.com/cgi-bin/mailman/listinfo/jspwiki-users
> http://www.jspwiki.org/JSPWikiMailingList
>
_______________________________________________
This is the Jspwiki-users mailing list, in which we discuss the
stable release (even-numbered, 2.4.x, 2.6.x), and user-issues.
For development discussion, please join jspwiki-dev.
http://ecyrd.com/cgi-bin/mailman/listinfo/jspwiki-users
http://www.jspwiki.org/JSPWikiMailingList
