RE : RE : Tomcat 5 and Realm problem
I did not remember of this point of the specification. I'll try to do another way. Thanks a lot for your answer. Fred. -Message d'origine- De : Ben Souther [mailto:[EMAIL PROTECTED] Envoyé : mercredi 15 décembre 2004 17:45 À : Tomcat Users List Objet : Re: RE : Tomcat 5 and Realm problem On Wed, 2004-12-15 at 10:44, VAN DER MARLIERE FREDERIC wrote: Not far. I do use IE and htpts. And I turned off cookies but in server.xml file. I meet to many problems when I use session cookies and none with encoded URL. Any idea of the way to use realm authentication (FORM method) with cookies turned off? If there is, it probably won't be very portable. Here's a quote from the serlet specs: SRV.12.5.3.1 Login Form Notes Form based login and URL based session tracking can be problematic to implement. Form based login should be used only when sessions are being maintained by cookies or by SSL session information. Ce message et toutes les pieces jointes (ci-apres le message) sont confidentiels et etablis a l'intention exclusive de ses destinataires. Toute utilisation ou diffusion non autorisee est interdite.Tout message electronique est susceptible d'alteration. Le CREDIT DU NORD et ses filiales declinent toute responsabilite au titre de ce message s'il a ete altere, deforme ou falsifie. This message and any attachments ( the message) are confidential and intended solely for the addressees. Any unauthorised use or dissemination is prohibited.E-mails are susceptible to alteration. Neither CREDIT DU NORD nor any of its subsidiaries or affiliates shall be liable for the message if altered, changed or falsified. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: Tomcat 5 and Realm problem
Hi Frederic, you are using IE and https? I got the same error and can't find a proper solution for it. I bet you have turned of cookies in IE. Turn them on (allow session-cookies) and it will work again. Greetings Martin -Ursprüngliche Nachricht- Von: VAN DER MARLIERE FREDERIC [mailto:[EMAIL PROTECTED] Gesendet: Dienstag, 14. Dezember 2004 18:41 An: [EMAIL PROTECTED] Betreff: Tomcat 5 and Realm problem Hi, I'm developping a web app in wich I want the users to authenticate via Realm. I first used BASIC authentication méthod and everything worked fine. But when I want to use the FORM one, I get the following message when login and password are correct (if not, I get the error page I configured in web.xml): The time allowed for the login process has been exceeded. If you wish to continue you must either click back twice and re-click the link you requested or close and re-open your browser My web.xml looks like: security-constraint display-name/display-name web-resource-collection web-resource-nameprotection index/web-resource-name url-pattern//url-pattern http-methodGET/http-method /web-resource-collection auth-constraint role-namemyRole/role-name /auth-constraint /security-constraint login-config auth-methodFORM/auth-method form-login-config form-login-page/login.jsp/form-login-page form-error-page/error.jsp/form-error-page /form-login-config /login-config security-role role-namemyRole/role-name /security-role And login.jsp looks like: html head/head body form action=j_security_check method=POST input type=text name=j_username / input type=password name=j_password / input type=submit / /form /body /html Does someone have any idea about the origin of my problem ? Thanks. Fred. Ce message et toutes les pieces jointes (ci-apres le message) sont confidentiels et etablis a l'intention exclusive de ses destinataires. Toute utilisation ou diffusion non autorisee est interdite.Tout message electronique est susceptible d'alteration. Le CREDIT DU NORD et ses filiales declinent toute responsabilite au titre de ce message s'il a ete altere, deforme ou falsifie. This message and any attachments ( the message) are confidential and intended solely for the addressees. Any unauthorised use or dissemination is prohibited.E-mails are susceptible to alteration. Neither CREDIT DU NORD nor any of its subsidiaries or affiliates shall be liable for the message if altered, changed or falsified. Virus checked by G DATA AntiVirusKit Version: AVK 15.0.1471 from 11.12.2004 Virus news: www.antiviruslab.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: RE : Tomcat 5 and Realm problem
Hello Ben, On my System (w2k IE6) with Cookies turned off FORM based login fails even with SSL session information in IE firefox has no problem with that. :-( Martin -Ursprüngliche Nachricht- Von: Ben Souther [mailto:[EMAIL PROTECTED] Gesendet: Mittwoch, 15. Dezember 2004 17:45 An: Tomcat Users List Betreff: Re: RE : Tomcat 5 and Realm problem On Wed, 2004-12-15 at 10:44, VAN DER MARLIERE FREDERIC wrote: Not far. I do use IE and htpts. And I turned off cookies but in server.xml file. I meet to many problems when I use session cookies and none with encoded URL. Any idea of the way to use realm authentication (FORM method) with cookies turned off? If there is, it probably won't be very portable. Here's a quote from the serlet specs: SRV.12.5.3.1 Login Form Notes Form based login and URL based session tracking can be problematic to implement. Form based login should be used only when sessions are being maintained by cookies or by SSL session information. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Virus checked by G DATA AntiVirusKit Version: AVK 15.0.1471 from 11.12.2004 Virus news: www.antiviruslab.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE : Tomcat 5 and Realm problem
Not far. I do use IE and htpts. And I turned off cookies but in server.xml file. I meet to many problems when I use session cookies and none with encoded URL. Any idea of the way to use realm authentication (FORM method) with cookies turned off? -Message d'origine- De : Martin Grüneberg [mailto:[EMAIL PROTECTED] Envoyé : mercredi 15 décembre 2004 08:52 À : 'Tomcat Users List' Objet : AW: Tomcat 5 and Realm problem Hi Frederic, you are using IE and https? I got the same error and can't find a proper solution for it. I bet you have turned of cookies in IE. Turn them on (allow session-cookies) and it will work again. Greetings Martin -Ursprüngliche Nachricht- Von: VAN DER MARLIERE FREDERIC [mailto:[EMAIL PROTECTED] Gesendet: Dienstag, 14. Dezember 2004 18:41 An: [EMAIL PROTECTED] Betreff: Tomcat 5 and Realm problem Hi, I'm developping a web app in wich I want the users to authenticate via Realm. I first used BASIC authentication méthod and everything worked fine. But when I want to use the FORM one, I get the following message when login and password are correct (if not, I get the error page I configured in web.xml): The time allowed for the login process has been exceeded. If you wish to continue you must either click back twice and re-click the link you requested or close and re-open your browser My web.xml looks like: security-constraint display-name/display-name web-resource-collection web-resource-nameprotection index/web-resource-name url-pattern//url-pattern http-methodGET/http-method /web-resource-collection auth-constraint role-namemyRole/role-name /auth-constraint /security-constraint login-config auth-methodFORM/auth-method form-login-config form-login-page/login.jsp/form-login-page form-error-page/error.jsp/form-error-page /form-login-config /login-config security-role role-namemyRole/role-name /security-role And login.jsp looks like: html head/head body form action=j_security_check method=POST input type=text name=j_username / input type=password name=j_password / input type=submit / /form /body /html Does someone have any idea about the origin of my problem ? Thanks. Fred. Ce message et toutes les pieces jointes (ci-apres le message) sont confidentiels et etablis a l'intention exclusive de ses destinataires. Toute utilisation ou diffusion non autorisee est interdite.Tout message electronique est susceptible d'alteration. Le CREDIT DU NORD et ses filiales declinent toute responsabilite au titre de ce message s'il a ete altere, deforme ou falsifie. This message and any attachments ( the message) are confidential and intended solely for the addressees. Any unauthorised use or dissemination is prohibited.E-mails are susceptible to alteration. Neither CREDIT DU NORD nor any of its subsidiaries or affiliates shall be liable for the message if altered, changed or falsified. Virus checked by G DATA AntiVirusKit Version: AVK 15.0.1471 from 11.12.2004 Virus news: www.antiviruslab.com Ce message et toutes les pieces jointes (ci-apres le message) sont confidentiels et etablis a l'intention exclusive de ses destinataires. Toute utilisation ou diffusion non autorisee est interdite.Tout message electronique est susceptible d'alteration. Le CREDIT DU NORD et ses filiales declinent toute responsabilite au titre de ce message s'il a ete altere, deforme ou falsifie. This message and any attachments ( the message) are confidential and intended solely for the addressees. Any unauthorised use or dissemination is prohibited.E-mails are susceptible to alteration. Neither CREDIT DU NORD nor any of its subsidiaries or affiliates shall be liable for the message if altered, changed or falsified. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: RE : Tomcat 5 and Realm problem
On Wed, 2004-12-15 at 10:44, VAN DER MARLIERE FREDERIC wrote: Not far. I do use IE and htpts. And I turned off cookies but in server.xml file. I meet to many problems when I use session cookies and none with encoded URL. Any idea of the way to use realm authentication (FORM method) with cookies turned off? If there is, it probably won't be very portable. Here's a quote from the serlet specs: SRV.12.5.3.1 Login Form Notes Form based login and URL based session tracking can be problematic to implement. Form based login should be used only when sessions are being maintained by cookies or by SSL session information. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Tomcat 5 and Realm problem
Hi, I'm developping a web app in wich I want the users to authenticate via Realm. I first used BASIC authentication méthod and everything worked fine. But when I want to use the FORM one, I get the following message when login and password are correct (if not, I get the error page I configured in web.xml): The time allowed for the login process has been exceeded. If you wish to continue you must either click back twice and re-click the link you requested or close and re-open your browser My web.xml looks like: security-constraint display-name/display-name web-resource-collection web-resource-nameprotection index/web-resource-name url-pattern//url-pattern http-methodGET/http-method /web-resource-collection auth-constraint role-namemyRole/role-name /auth-constraint /security-constraint login-config auth-methodFORM/auth-method form-login-config form-login-page/login.jsp/form-login-page form-error-page/error.jsp/form-error-page /form-login-config /login-config security-role role-namemyRole/role-name /security-role And login.jsp looks like: html head/head body form action=j_security_check method=POST input type=text name=j_username / input type=password name=j_password / input type=submit / /form /body /html Does someone have any idea about the origin of my problem ? Thanks. Fred. Ce message et toutes les pieces jointes (ci-apres le message) sont confidentiels et etablis a l'intention exclusive de ses destinataires. Toute utilisation ou diffusion non autorisee est interdite.Tout message electronique est susceptible d'alteration. Le CREDIT DU NORD et ses filiales declinent toute responsabilite au titre de ce message s'il a ete altere, deforme ou falsifie. This message and any attachments ( the message) are confidential and intended solely for the addressees. Any unauthorised use or dissemination is prohibited.E-mails are susceptible to alteration. Neither CREDIT DU NORD nor any of its subsidiaries or affiliates shall be liable for the message if altered, changed or falsified.
Re: Tomcat 5 and Realm problem
On Tuesday 14 December 2004 19:40, VAN DER MARLIERE FREDERIC wrote: Hi, Hello, The time allowed for the login process has been exceeded. If you wish to continue you must either click back twice and re-click the link you requested or close and re-open your browser I had a similar problem like this a while ago, using a PostgresQL DB server on a Linux machine, it turned out that I had all three versions of the JDBC Driver in my common/lib and server/lib directory. Once I removed the other two versions, this problem went away. Does someone have any idea about the origin of my problem ? My suggestion would be to check your versions of the JDBC Driver you are using and make sure it is the correct version and working correctly. Thanks. Fred. Regards Q -- Quinton Delpeche Internal Systems Developer Softline VIP Telephone: +27 12 420 7000 Direct:+27 12 420 7007 Facsimile: +27 12 420 7344 http://www.vippayroll.co.za/ It's Fabulous! We haven't seen anything like it in the last half an hour! -- Macy's pgpewjkEbfWew.pgp Description: PGP signature
