RE: IIS5 + isapi_redirect.dll GREEN ARROW
http://www.verysimple.com/scripts/support_tc_iis.html visit this URL and download .reg file and run it. Restart your IIS and Tomcat ..still have problems feel free to revert back.. and check for typos first like jakarta..Jakarta -raj- -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 2:56 PM To: [EMAIL PROTECTED] Subject: IIS5 + isapi_redirect.dll GREEN ARROW hi all, We have just setup win2k server + iis5 + jdk1.3.1 + tomcat3.2.2 and have done the installations as per the manual (help file ). We are not able to get the green arrow up for isapi_redirect.dll filter. We have tried all possibilities. Even we tried the old isapi_redirect.dll file which we are currently using on our nt4.0. We have double checked the registry settings, but no luck. Can anyone throw light on this. thanks in advance niraj.
RE: User login logging (JDBC authentication)
Hi Reto, Could you please explain it more clearly And from your words i got one idea... please tell me whether it is right way or not... when ever a user access any JSP or Servlet other that LoginServlet(which is controller servlet).. I will check the session for some username if it is null then i redirect the request Login.jsp... Before this i will create a session in LogonServlet and set the username in the session whenever user is authenticated... is this OK -raj- -Original Message- From: Reto Badertscher [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 05, 2001 7:53 PM To: [EMAIL PROTECTED] Subject: AW: User login logging (JDBC authentication) Hello, If you have a controller servlet it can check for authenticated user and if a user is not logged in you can redirect to your login screen, and after a successfull login, redirect back to the protected target. For security reason (accessing a JSP directly without going thru the controller servlet), every protected resource can check if a user is logged in. Reto -Ursprüngliche Nachricht- Von: Rajehswar V. Rao [mailto:[EMAIL PROTECTED]] Gesendet: Donnerstag, 5. Juli 2001 15:33 An: '[EMAIL PROTECTED]' Betreff: RE: User login logging (JDBC authentication) Hi randy, I would appreciate your patience... I am coming from first... This is my prblem I have 10 JSPs under myCon/jsp folder in Tomcat.. One of them is Login.jsp...which does authentication of user... i check the username and password against data which lies in SQLServer 7.0... Once the user is authenticated only...I want to give access to remaining JSPs.. But he/she should not access any JSP unless authenticated by Login.jsp... This is my problem... what is your best possible solution Is it anyway related to Java or Tomcat security? If yes, how can i achieve it? Or is there any other way around to achieve it... Thanks for listening... -raj- -Original Message- From: Randy Layman [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 05, 2001 6:18 PM To: [EMAIL PROTECTED] Subject: RE: User login logging (JDBC authentication) From IIS you can only set the access to Tomcat as a whole, not individually. Tomcat controls access to the individual resources (IIS doesn't know what they are). You can view (and modify) the username and password in the session, I think the session field names are j_security_username and j_security_password, but don't remember right now - you can get a session object back for a secured user and then iterate over the fields. Randy > -Original Message----- > From: Rajehswar V. Rao [mailto:[EMAIL PROTECTED]] > Sent: Thursday, July 05, 2001 9:11 AM > To: '[EMAIL PROTECTED]' > Subject: RE: User login logging (JDBC authentication) > > > Hi Randy and all, > if that is the case where can i set username and password > And one more thing, i am using tomcat with IIS ...can i restrict > resources(JSPs and Servlets) on > tomcat from IIS... > Any help would be appreciated > -raj- > > -Original Message- > From: Randy Layman [mailto:[EMAIL PROTECTED]] > Sent: Thursday, July 05, 2001 5:32 PM > To: [EMAIL PROTECTED] > Subject: RE: User login logging (JDBC authentication) > > > > What is happening is that Tomcat is using the user's credentials > (username/password) in the Session to authenticate. If they > are not there > or invalid, then the user is prompted to log in again. > > Randy > > > -Original Message- > > From: Mark Muffett [mailto:[EMAIL PROTECTED]] > > Sent: Thursday, July 05, 2001 8:33 AM > > To: [EMAIL PROTECTED] > > Subject: Re: User login logging (JDBC authentication) > > > > > > Raj and all > > > > I've managed to make the changes (very easy), but of course > > it doesn't work > > exactly as I wanted it (isn't life always like that...) > > > > I've got a database which is filling up fast since a new log > > gets written to > > it every time a user accesses a new page (probably about 100 > > times each > > session). > > > > Tomcat clearly knows what a session is (since it doesn't ask > > the user to log > > in again for each page) - any idea where it does this? > > > > Thanks for any help. > > > > Mark > > > > - Original Message - > > From: "Rajehswar V. Rao" <[EMAIL PROTECTED]> > > To: <[EMAIL PROTECTED]> > > Sent: Thursday, July 05, 2001 12:21 PM > > Subject: RE: User login logging (JDBC authentication) > > > > > > > Hi Mark and all, > > > I think my situation is also almost same > > > I have set of JSPs under my \myContext\jsp... > >
RE: User login logging (JDBC authentication)
Hi randy, I would appreciate your patience... I am coming from first... This is my prblem I have 10 JSPs under myCon/jsp folder in Tomcat.. One of them is Login.jsp...which does authentication of user... i check the username and password against data which lies in SQLServer 7.0... Once the user is authenticated only...I want to give access to remaining JSPs.. But he/she should not access any JSP unless authenticated by Login.jsp... This is my problem... what is your best possible solution Is it anyway related to Java or Tomcat security? If yes, how can i achieve it? Or is there any other way around to achieve it... Thanks for listening... -raj- -Original Message- From: Randy Layman [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 05, 2001 6:18 PM To: [EMAIL PROTECTED] Subject: RE: User login logging (JDBC authentication) From IIS you can only set the access to Tomcat as a whole, not individually. Tomcat controls access to the individual resources (IIS doesn't know what they are). You can view (and modify) the username and password in the session, I think the session field names are j_security_username and j_security_password, but don't remember right now - you can get a session object back for a secured user and then iterate over the fields. Randy > -Original Message- > From: Rajehswar V. Rao [mailto:[EMAIL PROTECTED]] > Sent: Thursday, July 05, 2001 9:11 AM > To: '[EMAIL PROTECTED]' > Subject: RE: User login logging (JDBC authentication) > > > Hi Randy and all, > if that is the case where can i set username and password > And one more thing, i am using tomcat with IIS ...can i restrict > resources(JSPs and Servlets) on > tomcat from IIS... > Any help would be appreciated > -raj- > > -Original Message- > From: Randy Layman [mailto:[EMAIL PROTECTED]] > Sent: Thursday, July 05, 2001 5:32 PM > To: [EMAIL PROTECTED] > Subject: RE: User login logging (JDBC authentication) > > > > What is happening is that Tomcat is using the user's credentials > (username/password) in the Session to authenticate. If they > are not there > or invalid, then the user is prompted to log in again. > > Randy > > > -Original Message- > > From: Mark Muffett [mailto:[EMAIL PROTECTED]] > > Sent: Thursday, July 05, 2001 8:33 AM > > To: [EMAIL PROTECTED] > > Subject: Re: User login logging (JDBC authentication) > > > > > > Raj and all > > > > I've managed to make the changes (very easy), but of course > > it doesn't work > > exactly as I wanted it (isn't life always like that...) > > > > I've got a database which is filling up fast since a new log > > gets written to > > it every time a user accesses a new page (probably about 100 > > times each > > session). > > > > Tomcat clearly knows what a session is (since it doesn't ask > > the user to log > > in again for each page) - any idea where it does this? > > > > Thanks for any help. > > > > Mark > > > > - Original Message - > > From: "Rajehswar V. Rao" <[EMAIL PROTECTED]> > > To: <[EMAIL PROTECTED]> > > Sent: Thursday, July 05, 2001 12:21 PM > > Subject: RE: User login logging (JDBC authentication) > > > > > > > Hi Mark and all, > > > I think my situation is also almost same > > > I have set of JSPs under my \myContext\jsp... > > > I dont want to give access to the users to these JSPs once > > they have been > > > authnticated... > > > One of the JSPs authenticate the user > > > please do help... > > > -raj- > > > > > > -Original Message- > > > From: Mark Muffett [mailto:[EMAIL PROTECTED]] > > > Sent: Wednesday, July 04, 2001 1:59 PM > > > To: [EMAIL PROTECTED] > > > Subject: Re: User login logging (JDBC authentication) > > > > > > > > > Sorry! - found it now (in tomcat_modules.jar). > > > > > > Mark > > > > > > - Original Message - > > > From: "Mark Muffett" <[EMAIL PROTECTED]> > > > To: <[EMAIL PROTECTED]>; "Antony Bowesman" > > <[EMAIL PROTECTED]> > > > Sent: Wednesday, July 04, 2001 8:37 AM > > > Subject: Re: User login logging (JDBC authentication) > > > > > > > > > > Antony > > > > > > > > Many thanks for the suggestion, but where can I find this > > - I've looked > > > > through the jar files in the common and contain
RE: User login logging (JDBC authentication)
Hi Randy and all, if that is the case where can i set username and password And one more thing, i am using tomcat with IIS ...can i restrict resources(JSPs and Servlets) on tomcat from IIS... Any help would be appreciated -raj- -Original Message- From: Randy Layman [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 05, 2001 5:32 PM To: [EMAIL PROTECTED] Subject: RE: User login logging (JDBC authentication) What is happening is that Tomcat is using the user's credentials (username/password) in the Session to authenticate. If they are not there or invalid, then the user is prompted to log in again. Randy > -Original Message- > From: Mark Muffett [mailto:[EMAIL PROTECTED]] > Sent: Thursday, July 05, 2001 8:33 AM > To: [EMAIL PROTECTED] > Subject: Re: User login logging (JDBC authentication) > > > Raj and all > > I've managed to make the changes (very easy), but of course > it doesn't work > exactly as I wanted it (isn't life always like that...) > > I've got a database which is filling up fast since a new log > gets written to > it every time a user accesses a new page (probably about 100 > times each > session). > > Tomcat clearly knows what a session is (since it doesn't ask > the user to log > in again for each page) - any idea where it does this? > > Thanks for any help. > > Mark > > - Original Message - > From: "Rajehswar V. Rao" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Thursday, July 05, 2001 12:21 PM > Subject: RE: User login logging (JDBC authentication) > > > > Hi Mark and all, > > I think my situation is also almost same > > I have set of JSPs under my \myContext\jsp... > > I dont want to give access to the users to these JSPs once > they have been > > authnticated... > > One of the JSPs authenticate the user > > please do help... > > -raj- > > > > -Original Message- > > From: Mark Muffett [mailto:[EMAIL PROTECTED]] > > Sent: Wednesday, July 04, 2001 1:59 PM > > To: [EMAIL PROTECTED] > > Subject: Re: User login logging (JDBC authentication) > > > > > > Sorry! - found it now (in tomcat_modules.jar). > > > > Mark > > > > - Original Message - > > From: "Mark Muffett" <[EMAIL PROTECTED]> > > To: <[EMAIL PROTECTED]>; "Antony Bowesman" > <[EMAIL PROTECTED]> > > Sent: Wednesday, July 04, 2001 8:37 AM > > Subject: Re: User login logging (JDBC authentication) > > > > > > > Antony > > > > > > Many thanks for the suggestion, but where can I find this > - I've looked > > > through the jar files in the common and container directories of > > > $TOMCAT_HOME/lib, but nothing stands out. Maybe I've missed it? > > > > > > Any help appreciated. > > > > > > Thanks > > > > > > Mark > > > > > > > > > - Original Message - > > > From: "Antony Bowesman" <[EMAIL PROTECTED]> > > > To: <[EMAIL PROTECTED]> > > > Sent: Thursday, June 28, 2001 4:58 PM > > > Subject: Re: User login logging (JDBC authentication) > > > > > > > > > > Mark Muffett wrote: > > > > > > > > > > Any ideas how best to log succesful (or unsuccesful) > logins via > > > > > JDBC authentication. The big problem is that the > user may have > > > > > bookmarked any one of a number of protected pages, > and it isn't > > > > > practical to put code on each of them. > > > > > > > > Just change the JDBC realm authenticate() method to log > the result of > > > > the authentication. > > > > > > > > Antony > > > > > > > > > >
RE: JDBC Realm Questions Tomcat 3.2.2
I am looking for same -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 05, 2001 4:02 AM To: [EMAIL PROTECTED] Subject: Fwd:JDBC Realm Questions Tomcat 3.2.2 Someone please respond to these questions so I know whether JDBC Realms are a supported feature of Tomcat3.2.2. I posted the question a few days ago and have gotten no responses. Has anyone been successful in referencing a jdbc datasource configured in the server.xml of Tomcat 3.2.2? If so, how? Jonathan Forward Header_ Subject:JDBC Realm Questions Tomcat 3.2.2 Author: [EMAIL PROTECTED] Date: 7/3/2001 8:21 PM This may be a stupid question but I've found hundreds of messages from confused users on the subject of JDBC Realms and Tomcat and no good explanation or example. There is a documentation file JDBCRealm.howto but it doesn't describe how to instantiate the datasource with a code example or what additional property files need to be included to configure jndi properties. Like lots of other people, I'm trying to use the release Tomcat 3.2.2, configure multiple jdbc datasources in the server.xml file, and reference it in my servlet. I am only interested in using a shared database ID to connect to the database for all users of my servlet. The database connect info needs to be in Tomcat conf files since the passwords need to be reconfigured at deployment time outside my war file. 1. Is this behavior supported by Tomcat 3.2.2? How do I configure multiple database datasources and instantiate them in my code? 2. Assuming I setup the datasources like below, what properties do I use to assign a name to the datasource so I can reference it? 3. What do I need to add to a config file in order to access the initial context so I can retrieve the datasource? import javax.servlet.*; import javax.servlet.http.*; import javax.naming.*; import javax.sql.*; String theDataSourceName = "???"; String theNamingProviderURL = "???"; String theInitialContextNamingFactory = "???"; Properties theProperties = new Properties (); theProperties.put("java.naming.provider.url", theNamingProviderURL); theProperties.put("java.naming.factory.initial",theInitialContextNamingFacto ry); Context theInitialContext = new InitialContext(theProperties); DataSource theDataSource = (DataSource) theInitialContext.lookup (theDatasourceName);
RE: User login logging (JDBC authentication)
Hi Mark and all, I think my situation is also almost same I have set of JSPs under my \myContext\jsp... I dont want to give access to the users to these JSPs once they have been authnticated... One of the JSPs authenticate the user please do help... -raj- -Original Message- From: Mark Muffett [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 04, 2001 1:59 PM To: [EMAIL PROTECTED] Subject: Re: User login logging (JDBC authentication) Sorry! - found it now (in tomcat_modules.jar). Mark - Original Message - From: "Mark Muffett" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]>; "Antony Bowesman" <[EMAIL PROTECTED]> Sent: Wednesday, July 04, 2001 8:37 AM Subject: Re: User login logging (JDBC authentication) > Antony > > Many thanks for the suggestion, but where can I find this - I've looked > through the jar files in the common and container directories of > $TOMCAT_HOME/lib, but nothing stands out. Maybe I've missed it? > > Any help appreciated. > > Thanks > > Mark > > > - Original Message - > From: "Antony Bowesman" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Thursday, June 28, 2001 4:58 PM > Subject: Re: User login logging (JDBC authentication) > > > > Mark Muffett wrote: > > > > > > Any ideas how best to log succesful (or unsuccesful) logins via > > > JDBC authentication. The big problem is that the user may have > > > bookmarked any one of a number of protected pages, and it isn't > > > practical to put code on each of them. > > > > Just change the JDBC realm authenticate() method to log the result of > > the authentication. > > > > Antony > > >
Startup Servlet in Tomcat environment
Hi all, I am trying to keep a servlet in Tomcat environment so that whenever server starts, the servlet should be loaded. I have servlet under examples/WEB-INF/classes in Tomcat. And I knew that load-on-startup value to be set in web.xml which is under TOMCAT_HOME/conf. But How can i map the servlet which is in examples/WEB-INF/classes in the web.xml of Conf folder. I am working on Tomact3.2 with IIS on Windows2000 and NT4.0 Has anybody worked on this Please do help -raj-