Re: context.xml and custom realm
Caldarale, Charles R wrote: From: Jeff Powell [mailto:[EMAIL PROTECTED] 4. Set up a login.config file for Java (see JAAS LoginConfig filehttp://java.sun.com/j2se/1.4.1/docs/guide/security/jaas/tutorials/LoginConfigFile.html) and tell Tomcat where to find it by specifying its location to the JVM, for instance by setting the environment variable: JAVA_OPTS=-DJAVA_OPTS=-Djava.security.auth.login.config==$CATALINA_HOME/conf/jaas.config Yup, that's broken. It's missing a rather critical $ and has extra -D and =; it should really be: JAVA_OPTS=$JAVA_OPTS -Djava.security.auth.login.config==$CATALINA_HOME/conf/jaas.config Thanks for pointing this out. It has been fixed for trunk, 6.0.x and 5.5.x and will be in the next releases of each. Mark - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
I am trying to create a custom realm but it seems that with JAAS I have to create a global realm for a specific application. I am also having copious troubles getting it to work. I'd like to be able to use a JDBC like approach with named arguments. My problem is that the database (unidata) does not adapt well to odbc and also does not have a java connector. Ideally I'd create my own JDBC connector that gets the data and returns it in the format a JDBCRealm is expecting it. Can someone point me to some resources? TIA - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
From: Jeff Powell [mailto:[EMAIL PROTECTED] Subject: RE: context.xml and custom realm I am trying to create a custom realm but it seems that with JAAS I have to create a global realm for a specific application. You shouldn't have to. Just put the Realm inside the webapp's Context element and put whatever classes are used for the realm in the webapp's WEB-INF/lib or WEB-INF/classes directory, as appropriate. You'll also need to set the useContextClassLoader attribute of the Realm to true. My problem is that the database (unidata) does not adapt well to odbc and also does not have a java connector. You really, really want to stay away from any use of odbc. Ideally I'd create my own JDBC connector that gets the data and returns it in the format a JDBCRealm is expecting it. I'm confused; first you ask about JAASRealm, and then close with a comment about JDBCRealm. Which is it? And, as usual, don't make us guess the Tomcat version you're using. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
Chuck, Thanks for your response. You really, really want to stay away from any use of odbc. You're right, I do. odbc doesn't speak multi-value and unidata doesn't return result sets. I'm confused; first you ask about JAASRealm, and then close with a comment about JDBCRealm. Which is it? If JAAS will do it then that would be great. But so far all the examples with JAAS don't show how to just create the minimal framework for a webapp. They're all geared for applications and hook themselves into the server.xml requiring a restart with special security settings. Putting the realm in my webapp's context.xml is where I want it. I've been googling and coding by trial and error for a day now. Are there any examples I could look at and adapt? My last attempt at JAAS yielded deployment errors. And, as usual, don't make us guess the Tomcat version you're using. I have 5.5.20, 6.0.13 and an embedded 6.0.16 in my NetBeans IDE. Thanks again.
RE: context.xml and custom realm
From: Jeff Powell [mailto:[EMAIL PROTECTED] Subject: RE: context.xml and custom realm But so far all the examples with JAAS don't show how to just create the minimal framework for a webapp. While it's true that a single JVM instance only allows specification of one login.config file at a time, that file can contain multiple entries, one for each webapp, if needed. Each JAAS Realm must have an appName attribute pointing to its subsection of the login.config file. Have you looked at the Tomcat doc for JAASRealm? http://tomcat.apache.org/tomcat-6.0-doc/realm-howto.html#JAASRealm That's pretty much all we used to get it running, other than the JVM's JAAS config. The key part is putting your LoginModule and Principal classes under the webapp's WEB-INF directory, putting the Realm inside the webapp's Context element, and setting useContextClassLoader to true. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
I created a auth.conf file in my $CATALINA_HOME/conf and pointed the JVM
to it.
/usr/local/apache-tomcat-6.0.16/auth.conf:
dropInv {
com.ips.security.UdLoginModule required;
loginFile=VALIDATION;
loginKey=100!IPS.DROP.AUTH;
userAttr=3;
credAttr=4;
roleAttr=5;
};
java.security:
#
# Default login configuration file
#
#login.config.url.1=file:${user.home}/.java.login.config
login.config.url.3=file:///usr/local/apache-tomcat-6.0.16/auth.conf
Re-deployed my application
Re-started tomcat to pickup the changes and ...
Jul 23, 2008 2:54:38 PM org.apache.catalina.core.AprLifecycleListener
init
INFO: The APR based Apache Tomcat Native library which allows optimal
performance in production environments was not found on the
java.library.path:
/usr/java/jdk1.6.0_03/jre/lib/i386/client:/usr/java/jdk1.6.0_03/jre/lib/i386:/usr/java/jdk1.6.0_03/jre/../lib/i386:/usr/java/packages/lib/i386:/lib:/usr/lib
Jul 23, 2008 2:54:39 PM org.apache.coyote.http11.Http11Protocol init
INFO: Initializing Coyote HTTP/1.1 on http-8080
Jul 23, 2008 2:54:39 PM org.apache.catalina.startup.Catalina load
INFO: Initialization processed in 1246 ms
Jul 23, 2008 2:54:39 PM org.apache.catalina.core.StandardService start
INFO: Starting service Catalina
Jul 23, 2008 2:54:39 PM org.apache.catalina.core.StandardEngine start
INFO: Starting Servlet Engine: Apache Tomcat/6.0.16
Jul 23, 2008 2:54:39 PM org.apache.catalina.realm.JAASRealm
setUseContextClassLoader
INFO: Setting useContextClassLoader = true
Jul 23, 2008 2:54:39 PM org.apache.catalina.realm.JAASRealm setContainer
INFO: Set JAAS app name dropInv
Jul 23, 2008 2:54:39 PM org.apache.catalina.realm.JAASRealm
parseClassNames
SEVERE: Class com.ips.security.User not found! Class not added.
Jul 23, 2008 2:54:39 PM org.apache.catalina.realm.JAASRealm
parseClassNames
SEVERE: Class com.ips.security.Roles not found! Class not added.
Jul 23, 2008 2:54:40 PM org.apache.catalina.core.StandardContext
addApplicationListener
INFO: The listener
com.sun.xml.ws.transport.http.servlet.WSServletContextListener is
already configured for this context. The duplicate definition has been
ignored.
Jul 23, 2008 2:54:40 PM
com.sun.xml.ws.transport.http.servlet.WSServletContextListener
contextInitialized
INFO: WSSERVLET12: JAX-WS context listener initializing
Jul 23, 2008 2:54:42 PM
com.sun.xml.ws.transport.http.servlet.WSServletDelegate init
INFO: WSSERVLET14: JAX-WS servlet initializing
Jul 23, 2008 2:54:43 PM org.apache.coyote.http11.Http11Protocol start
INFO: Starting Coyote HTTP/1.1 on http-8080
Jul 23, 2008 2:54:43 PM org.apache.jk.common.ChannelSocket init
INFO: JK: ajp13 listening on /0.0.0.0:8009
Jul 23, 2008 2:54:43 PM org.apache.jk.server.JkMain start
INFO: Jk running ID=0 time=0/137 config=null
Jul 23, 2008 2:54:43 PM org.apache.catalina.startup.Catalina start
INFO: Server startup in 4534 ms
Jul 23, 2008 2:54:43 PM org.apache.catalina.startup.HostConfig
checkResources
INFO: Undeploying context [/dropInv]
Jul 23, 2008 2:54:43 PM org.apache.catalina.realm.JAASRealm
setUseContextClassLoader
INFO: Setting useContextClassLoader = true
Jul 23, 2008 2:54:43 PM org.apache.catalina.realm.JAASRealm setContainer
INFO: Set JAAS app name dropInv
Jul 23, 2008 2:54:43 PM org.apache.catalina.realm.JAASRealm
parseClassNames
SEVERE: Class com.ips.security.User not found! Class not added.
Jul 23, 2008 2:54:43 PM org.apache.catalina.realm.JAASRealm
parseClassNames
SEVERE: Class com.ips.security.Roles not found! Class not added.
Jul 23, 2008 2:54:44 PM org.apache.catalina.core.StandardContext start
INFO: Container
org.apache.catalina.core.ContainerBase.[Catalina].[localhost].[/dropInv]
has already been started
What am I missing?
TIA
RE: context.xml and custom realm
Typo in the context.xml SEVERE: Class com.ips.security.User not found! Class not added. Jul 23, 2008 2:54:43 PM org.apache.catalina.realm.JAASRealm parseClassNames SEVERE: Class com.ips.security.Roles not found! Class not added. Jul 23, 2008 2:54:44 PM org.apache.catalina.core.StandardContext start Now i get this Jul 23, 2008 3:23:51 PM org.apache.catalina.realm.JAASRealm authenticate SEVERE: Unexpected error java.lang.SecurityException: Unable to locate a login configuration at com.sun.security.auth.login.ConfigFile.init(ConfigFile.java:93) at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method) at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:39) at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:27) at java.lang.reflect.Constructor.newInstance(Constructor.java:513) at java.lang.Class.newInstance0(Class.java:355) at java.lang.Class.newInstance(Class.java:308) at javax.security.auth.login.Configuration $3.run(Configuration.java:246) at java.security.AccessController.doPrivileged(Native Method) at javax.security.auth.login.Configuration.getConfiguration(Configuration.java:241) at javax.security.auth.login.LoginContext $1.run(LoginContext.java:237) at java.security.AccessController.doPrivileged(Native Method) at javax.security.auth.login.LoginContext.init(LoginContext.java:234) at javax.security.auth.login.LoginContext.init(LoginContext.java:403) at org.apache.catalina.realm.JAASRealm.authenticate(JAASRealm.java:345) at org.apache.catalina.authenticator.FormAuthenticator.authenticate(FormAuthenticator.java:258) at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:417) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:128) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:286) at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:844) at org.apache.coyote.http11.Http11Protocol $Http11ConnectionHandler.process(Http11Protocol.java:583) at org.apache.tomcat.util.net.JIoEndpoint $Worker.run(JIoEndpoint.java:447) at java.lang.Thread.run(Thread.java:619) Caused by: java.io.IOException: Unable to locate a login configuration at com.sun.security.auth.login.ConfigFile.init(ConfigFile.java:250) at com.sun.security.auth.login.ConfigFile.init(ConfigFile.java:91) ... 24 more - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
Deploy dropInv.war on 6.0.13 production server and I get this again. Is JAAS broken? INFO: Deploying web application archive dropInv.war Jul 23, 2008 3:59:19 PM org.apache.catalina.realm.JAASRealm parseClassNames SEVERE: Class com.ips.security.UdUser not found! Class not added. Jul 23, 2008 3:59:19 PM org.apache.catalina.realm.JAASRealm parseClassNames SEVERE: Class com.ips.security.UdRoles not found! Class not added. Jul 23, 2008 3:59:19 PM org.apache.catalina.realm.JAASRealm setUseContextClassLoader INFO: Setting useContextClassLoader = true Jul 23, 2008 3:59:19 PM org.apache.catalina.realm.JAASRealm setContainer INFO: Set JAAS app name dropInv - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
From: Jeff Powell [mailto:[EMAIL PROTECTED] Subject: RE: context.xml and custom realm Deploy dropInv.war on 6.0.13 production server and I get this again. Is JAAS broken? No, you just haven't put the stated class in a usable location. What's in your Realm? What's in your Context? - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
From: Jeff Powell [mailto:[EMAIL PROTECTED] Subject: RE: context.xml and custom realm java.lang.SecurityException: Unable to locate a login configuration What do you have as the value of the system property java.security.auth.login.config? That has to be set to point to the login config (JAAS requirement). - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
?xml version=1.0 encoding=UTF-8?
Context path=/dropInv
Realm className=org.apache.catalina.realm.JAASRealm
appName=dropInv
userClassNames=com.ips.security.UdUser
roleClassNames=com.ips.security.UdRoles
useContextClassLoader=true /
/Context
I just added the appName for testing and it didn't help.
com.ips.security.* is in the project .war file.
Production server :
JAVA_OPTS=-DJAVA_OPTS=-Djava.security.auth.login.config==/opt/tomcat/conf/jaas.config
as well as the JVM settings similar to those on the dev server.
Development Server:
/usr/local/apache-tomcat-6.0.16/auth.conf:
dropInv {
com.ips.security.UdLoginModule required;
loginFile=VALIDATION;
loginKey=100!IPS.DROP.AUTH;
userAttr=3;
credAttr=4;
roleAttr=5;
};
java.security:
#
# Default login configuration file
#
#login.config.url.1=file:${user.home}/.java.login.config
login.config.url.3=file:///usr/local/apache-tomcat-6.0.16/auth.conf
-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
From: Jeff Powell [mailto:[EMAIL PROTECTED]
Subject: RE: context.xml and custom realm
I created a auth.conf file in my $CATALINA_HOME/conf and
pointed the JVM to it.
How? You should be setting the system property java.security.auth.login.config
just for Tomcat rather than changing the global configuration, which affects
every JVM execution on the system.
/usr/local/apache-tomcat-6.0.16/auth.conf:
dropInv {
com.ips.security.UdLoginModule required;
loginFile=VALIDATION;
loginKey=100!IPS.DROP.AUTH;
userAttr=3;
credAttr=4;
roleAttr=5;
};
What do you expect JAAS to do with things above that aren't LoginModule class
names? LoginModules are the only things allowed here.
- Chuck
THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY
MATERIAL and is thus for use only by the intended recipient. If you received
this in error, please contact the sender and delete the e-mail and its
attachments from all computers.
-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
From: Jeff Powell [mailto:[EMAIL PROTECTED]
Subject: RE: context.xml and custom realm
?xml version=1.0 encoding=UTF-8?
Context path=/dropInv
Remove the path attribute - it's not allowed.
Realm className=org.apache.catalina.realm.JAASRealm
appName=dropInv
userClassNames=com.ips.security.UdUser
roleClassNames=com.ips.security.UdRoles
useContextClassLoader=true /
/Context
I just added the appName for testing and it didn't help.
It's required so JAAS can locate the proper entry in the login config file.
JAVA_OPTS=-DJAVA_OPTS=-Djava.security.auth.login.config==
/opt/tomcat/conf/jaas.config
What's in jaas.config?
/usr/local/apache-tomcat-6.0.16/auth.conf:
dropInv {
com.ips.security.UdLoginModule required;
loginFile=VALIDATION;
loginKey=100!IPS.DROP.AUTH;
userAttr=3;
credAttr=4;
roleAttr=5;
};
What are the things after the LoginModule line? Only LoginModule class names
are allowed here.
java.security:
Don't change java.security unless you really, really want what's in there to
apply to *every* Java program run on that system.
- Chuck
THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY
MATERIAL and is thus for use only by the intended recipient. If you received
this in error, please contact the sender and delete the e-mail and its
attachments from all computers.
-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
Won't they be passed in the Map options on the Init?
How do I java.security.auth.login.config just for Tomcat ?
I thought that's what the
JAVA_OPTS=-DJAVA_OPTS=-Djava.security.auth.login.config==/opt/tomcat/con
f/jaas.config did?
-Original Message-
From: Caldarale, Charles R [mailto:[EMAIL PROTECTED]
Sent: Wednesday, July 23, 2008 4:27 PM
To: Tomcat Users List
Subject: RE: context.xml and custom realm
From: Jeff Powell [mailto:[EMAIL PROTECTED]
Subject: RE: context.xml and custom realm
I created a auth.conf file in my $CATALINA_HOME/conf and
pointed the JVM to it.
How? You should be setting the system property
java.security.auth.login.config just for Tomcat rather than changing the
global configuration, which affects every JVM execution on the system.
/usr/local/apache-tomcat-6.0.16/auth.conf:
dropInv {
com.ips.security.UdLoginModule required;
loginFile=VALIDATION;
loginKey=100!IPS.DROP.AUTH;
userAttr=3;
credAttr=4;
roleAttr=5;
};
What do you expect JAAS to do with things above that aren't LoginModule
class names? LoginModules are the only things allowed here.
- Chuck
THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY
MATERIAL and is thus for use only by the intended recipient. If you
received this in error, please contact the sender and delete the e-mail
and its attachments from all computers.
-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
Jaas.config is a typo should be jaas.conf has the same contents as
auth.conf on the dev server.
-Original Message-
From: Caldarale, Charles R [mailto:[EMAIL PROTECTED]
Sent: Wednesday, July 23, 2008 4:32 PM
To: Tomcat Users List
Subject: RE: context.xml and custom realm
From: Jeff Powell [mailto:[EMAIL PROTECTED]
Subject: RE: context.xml and custom realm
?xml version=1.0 encoding=UTF-8?
Context path=/dropInv
Remove the path attribute - it's not allowed.
Realm className=org.apache.catalina.realm.JAASRealm
appName=dropInv
userClassNames=com.ips.security.UdUser
roleClassNames=com.ips.security.UdRoles
useContextClassLoader=true /
/Context
I just added the appName for testing and it didn't help.
It's required so JAAS can locate the proper entry in the login config
file.
JAVA_OPTS=-DJAVA_OPTS=-Djava.security.auth.login.config==
/opt/tomcat/conf/jaas.config
What's in jaas.config?
/usr/local/apache-tomcat-6.0.16/auth.conf:
dropInv {
com.ips.security.UdLoginModule required;
loginFile=VALIDATION;
loginKey=100!IPS.DROP.AUTH;
userAttr=3;
credAttr=4;
roleAttr=5;
};
What are the things after the LoginModule line? Only LoginModule class
names are allowed here.
java.security:
Don't change java.security unless you really, really want what's in
there to apply to *every* Java program run on that system.
- Chuck
THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY
MATERIAL and is thus for use only by the intended recipient. If you
received this in error, please contact the sender and delete the e-mail
and its attachments from all computers.
-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
From: Jeffrey R. Powell [mailto:[EMAIL PROTECTED] Subject: RE: context.xml and custom realm Won't they be passed in the Map options on the Init? I have no idea what you're asking there. I thought that's what the JAVA_OPTS=-DJAVA_OPTS=-Djava.security.auth.login.config== /opt/tomcat/conf/jaas.config did? Except you made changes in /usr/local/apache-tomcat-6.0.16/auth.conf; make up your mind where you're going to put the login config file. Also, the JAVA_OPTS=-DJAVA_OPTS=-Detc. is non-sensical. Not quite sure what you're trying to achieve there. It's easiest just to set the JAVA_OPTS variable to whatever you need in Tomcat startup script or the process that runs the script. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
From: Jeffrey R. Powell [mailto:[EMAIL PROTECTED] Subject: RE: context.xml and custom realm Jaas.config is a typo should be jaas.conf has the same contents as auth.conf on the dev server. Let's stop confusing the issue and instead stick to just one system; once that one's sorted, you can work on the other. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
Well then let's just drop it. Thanks anyway. -Original Message- From: Caldarale, Charles R [mailto:[EMAIL PROTECTED] Sent: Wed 7/23/2008 4:39 PM To: Tomcat Users List Subject: RE: context.xml and custom realm From: Jeffrey R. Powell [mailto:[EMAIL PROTECTED] Subject: RE: context.xml and custom realm Jaas.config is a typo should be jaas.conf has the same contents as auth.conf on the dev server. Let's stop confusing the issue and instead stick to just one system; once that one's sorted, you can work on the other. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
From: Carol Cheung [mailto:[EMAIL PROTECTED] Subject: context.xml and custom realm Is it possible to place the realm and the database driver somewhere under webapps/appname and still have Tomcat find it? I really want to avoid having to restart Tomcat. If so, where should these be located? I think (not 100% positive) that this is possible only with the JAASRealm, when useContextClassLoader=true. You could write your custom realm to comply with the JAASRealm requirements, and then have your realm access the DB directly, rather than having Tomcat classes do it. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
