Re: Auto Login Using Form Based Authentication
I was using "mod_jk" as a short-hand for the entire server-suite. There is
a Domino connector, but I don't believe that there is a binary for it. You
can get the source and compile it from
http://jakarta.apache.org/builds/jakarta-tomcat-connectors/jk/release/v1.2.4
/src/. Documentation is at
http://jakarta.apache.org/builds/jakarta-tomcat-connectors/jk/release/v1.2.4
/doc/jk/domhowto.html.
"John Turner" <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]
>
> "mod_jk" is "strictly" for Apache, since the "mod" typically means "Apache
> module".
>
> But JK (AJP13) is a protocol. It can be implemented however you like.
> There are JK connectors for Apache and IIS, for example.
>
> John
>
> On Wed, 11 Jun 2003 10:53:37 -0400, vtobin <[EMAIL PROTECTED]>
wrote:
>
> > Hi Bill and Matt,
> >
> >> There are two problems with this:
> >> 1) Your Filter will not get called, since authentication happens before
> >> Filters (you'd need to use a Valve, but then you are locked into
Tomcat)
> >> . 2) Unless you are using Tomcat 5.x nightly, Request attibutes won't
be
> >> available to the login-page for the simple reason that that happens on
a
> >> different Request.
> >>
> >> The simplest solution would be to use mod_jk to connect Domino & Tomcat
> >> and set tomcatAuthentication="false". However, the Domino connector is
> >> probably the least tested .
> >>
> >> "Raible, Matt" <[EMAIL PROTECTED]> wrote in message
> >> news:[EMAIL PROTECTED]
> >> > You could put a filter on /* in your app, and if the user is routed
to
> >> the
> >> > login page (check the URL for an indexOf("login.jsp")) - then set a
> >> request
> >> > variable containing the parameter you want to save.
> >> >
> >> > Matt
> >
> > I'd like to thank you both for responding to my posting. I'm
researching
> > your suggestions, though I guess I'll probably have to give up the idea
> > of using a filter based on Bill's information.
> >
> > I'm looking up the info on mod_jk. That was a good lead, though the
> > particulars are still eluding me. I had always thought that mod_jk was
> > strictly for Apache and Tomcat, but if it'll work with Domino, that's
> > great.
> >
> > Val
> >
> > -
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
> >
> >
>
>
>
> --
> Using M2, Opera's revolutionary e-mail client: http://www.opera.com/m2/
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Re: Auto Login Using Form Based Authentication
"mod_jk" is "strictly" for Apache, since the "mod" typically means "Apache
module".
But JK (AJP13) is a protocol. It can be implemented however you like.
There are JK connectors for Apache and IIS, for example.
John
On Wed, 11 Jun 2003 10:53:37 -0400, vtobin <[EMAIL PROTECTED]> wrote:
Hi Bill and Matt,
There are two problems with this:
1) Your Filter will not get called, since authentication happens before
Filters (you'd need to use a Valve, but then you are locked into Tomcat)
. 2) Unless you are using Tomcat 5.x nightly, Request attibutes won't be
available to the login-page for the simple reason that that happens on a
different Request.
The simplest solution would be to use mod_jk to connect Domino & Tomcat
and set tomcatAuthentication="false". However, the Domino connector is
probably the least tested .
"Raible, Matt" <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]
> You could put a filter on /* in your app, and if the user is routed to
the
> login page (check the URL for an indexOf("login.jsp")) - then set a
request
> variable containing the parameter you want to save.
>
> Matt
I'd like to thank you both for responding to my posting. I'm researching
your suggestions, though I guess I'll probably have to give up the idea
of using a filter based on Bill's information.
I'm looking up the info on mod_jk. That was a good lead, though the
particulars are still eluding me. I had always thought that mod_jk was
strictly for Apache and Tomcat, but if it'll work with Domino, that's
great.
Val
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
--
Using M2, Opera's revolutionary e-mail client: http://www.opera.com/m2/
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Re: Auto Login Using Form Based Authentication
Hi Bill and Matt,
> There are two problems with this:
> 1) Your Filter will not get called, since authentication happens before
> Filters (you'd need to use a Valve, but then you are locked into
> Tomcat). 2) Unless you are using Tomcat 5.x nightly, Request
> attibutes won't be available to the login-page for the simple reason
> that that happens on a different Request.
>
> The simplest solution would be to use mod_jk to connect Domino &
> Tomcat and set tomcatAuthentication="false". However, the Domino
> connector is probably the least tested .
>
> "Raible, Matt" <[EMAIL PROTECTED]> wrote in message
> news:[EMAIL PROTECTED]
> > You could put a filter on /* in your app, and if the user is routed to the
> > login page (check the URL for an indexOf("login.jsp")) - then set a
> request
> > variable containing the parameter you want to save.
> >
> > Matt
I'd like to thank you both for responding to my posting. I'm researching
your suggestions, though I guess I'll probably have to give up the idea of
using a filter based on Bill's information.
I'm looking up the info on mod_jk. That was a good lead, though the
particulars are still eluding me. I had always thought that mod_jk was
strictly for Apache and Tomcat, but if it'll work with Domino, that's great.
Val
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
RE: Auto Login Using Form Based Authentication
> 1) Your Filter will not get called, since authentication happens before
> Filters (you'd need to use a Valve, but then you are locked into Tomcat).
In my experience, and my current working app, this is not the case. The
following code works for me in a filter (mapped to /*) to auto-login a user:
if ((request.getRequestURL().indexOf("login")) {
// Check to see if we should automatically login the user
// container is routing user to login page, check for remember me cookie
Cookie userCookie = RequestUtil.getCookie(request, "username");
String username =
(passCookie != null)
? URLDecoder.decode(userCookie.getValue(), "UTF-8") : null;
if ((rememberMe != null) && (password != null)) {
// authenticate user without displaying login page
String route = request.getContextPath() +
"/j_security_check?j_username=" + username
+ "&j_password=" + StringUtil.decodeString(password);
if (log.isDebugEnabled()) {
log.debug("I remember you '" + username
+ "', attempting authentication...");
}
response.sendRedirect(response.encodeRedirectURL(route));
return;
}
}
Matt
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Re: Auto Login Using Form Based Authentication
There are two problems with this:
1) Your Filter will not get called, since authentication happens before
Filters (you'd need to use a Valve, but then you are locked into Tomcat).
2) Unless you are using Tomcat 5.x nightly, Request attibutes won't be
available to the login-page for the simple reason that that happens on a
different Request.
The simplest solution would be to use mod_jk to connect Domino & Tomcat and
set tomcatAuthentication="false". However, the Domino connector is probably
the least tested .
"Raible, Matt" <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]
> You could put a filter on /* in your app, and if the user is routed to the
> login page (check the URL for an indexOf("login.jsp")) - then set a
request
> variable containing the parameter you want to save.
>
> Matt
>
> -Original Message-
> From: Val T. [mailto:[EMAIL PROTECTED]
> Sent: Tuesday, June 10, 2003 12:46 PM
> To: Tomcat Users List
> Subject: Auto Login Using Form Based Authentication
>
>
> Hi,
>
> I have an atypical situation in that I am trying to auto login users from
> another system (a Lotus Domino system) when they connect to my JSP
> application. I am using Tomcat 4.1.18 and have form based authentication
> working on it. I would prefer if the users did not have to explicitly
> login, because, as far as they are concerned, it's all part of the same
> application.
>
> Here is what I was hoping to be able to do:
>
> The user, who is already logged in on the Domino system, clicks on the
link
> to my application. The link contains the user's UserID, as a parameter.
> The page they are linking to is in a restricted area, so Tomcat serves up
> the login page, which takes the UID parameter, retrieves the related
> password from the database, and logs the user in onload.
>
> I have it all working beautifully, EXCEPT that I can't seem to be able to
> retrieve the parameter from the URL. I suspect that it is lost when,
> instead of serving up the destination page, Tomcat serves up the login
page
> instead. Is there a way to pass a parameter to the login page? I think
the
> issue is the fact that you can't just call the login page directly. Does
> anyone see a way around this?
>
> I was thinking that maybe I'd have to link to an index page first, and
then
> write a cookie, which I'd have to access from the login page. That seems
> like such a round-about way to go, when it would be so much simpler to
just
> grab a parameter from the URL.
>
> Thanks in advance for any advice.
>
> Val
>
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
RE: Auto Login Using Form Based Authentication
You could put a filter on /* in your app, and if the user is routed to the
login page (check the URL for an indexOf("login.jsp")) - then set a request
variable containing the parameter you want to save.
Matt
-Original Message-
From: Val T. [mailto:[EMAIL PROTECTED]
Sent: Tuesday, June 10, 2003 12:46 PM
To: Tomcat Users List
Subject: Auto Login Using Form Based Authentication
Hi,
I have an atypical situation in that I am trying to auto login users from
another system (a Lotus Domino system) when they connect to my JSP
application. I am using Tomcat 4.1.18 and have form based authentication
working on it. I would prefer if the users did not have to explicitly
login, because, as far as they are concerned, it's all part of the same
application.
Here is what I was hoping to be able to do:
The user, who is already logged in on the Domino system, clicks on the link
to my application. The link contains the user's UserID, as a parameter.
The page they are linking to is in a restricted area, so Tomcat serves up
the login page, which takes the UID parameter, retrieves the related
password from the database, and logs the user in onload.
I have it all working beautifully, EXCEPT that I can't seem to be able to
retrieve the parameter from the URL. I suspect that it is lost when,
instead of serving up the destination page, Tomcat serves up the login page
instead. Is there a way to pass a parameter to the login page? I think the
issue is the fact that you can't just call the login page directly. Does
anyone see a way around this?
I was thinking that maybe I'd have to link to an index page first, and then
write a cookie, which I'd have to access from the login page. That seems
like such a round-about way to go, when it would be so much simpler to just
grab a parameter from the URL.
Thanks in advance for any advice.
Val
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
