Re: context.xml and custom realm
Caldarale, Charles R wrote: From: Jeff Powell [mailto:[EMAIL PROTECTED] 4. Set up a login.config file for Java (see JAAS LoginConfig filehttp://java.sun.com/j2se/1.4.1/docs/guide/security/jaas/tutorials/LoginConfigFile.html) and tell Tomcat where to find it by specifying its location to the JVM, for instance by setting the environment variable: JAVA_OPTS=-DJAVA_OPTS=-Djava.security.auth.login.config==$CATALINA_HOME/conf/jaas.config Yup, that's broken. It's missing a rather critical $ and has extra -D and =; it should really be: JAVA_OPTS=$JAVA_OPTS -Djava.security.auth.login.config==$CATALINA_HOME/conf/jaas.config Thanks for pointing this out. It has been fixed for trunk, 6.0.x and 5.5.x and will be in the next releases of each. Mark - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
I am trying to create a custom realm but it seems that with JAAS I have to create a global realm for a specific application. I am also having copious troubles getting it to work. I'd like to be able to use a JDBC like approach with named arguments. My problem is that the database (unidata) does not adapt well to odbc and also does not have a java connector. Ideally I'd create my own JDBC connector that gets the data and returns it in the format a JDBCRealm is expecting it. Can someone point me to some resources? TIA - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
From: Jeff Powell [mailto:[EMAIL PROTECTED] Subject: RE: context.xml and custom realm I am trying to create a custom realm but it seems that with JAAS I have to create a global realm for a specific application. You shouldn't have to. Just put the Realm inside the webapp's Context element and put whatever classes are used for the realm in the webapp's WEB-INF/lib or WEB-INF/classes directory, as appropriate. You'll also need to set the useContextClassLoader attribute of the Realm to true. My problem is that the database (unidata) does not adapt well to odbc and also does not have a java connector. You really, really want to stay away from any use of odbc. Ideally I'd create my own JDBC connector that gets the data and returns it in the format a JDBCRealm is expecting it. I'm confused; first you ask about JAASRealm, and then close with a comment about JDBCRealm. Which is it? And, as usual, don't make us guess the Tomcat version you're using. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
Chuck, Thanks for your response. You really, really want to stay away from any use of odbc. You're right, I do. odbc doesn't speak multi-value and unidata doesn't return result sets. I'm confused; first you ask about JAASRealm, and then close with a comment about JDBCRealm. Which is it? If JAAS will do it then that would be great. But so far all the examples with JAAS don't show how to just create the minimal framework for a webapp. They're all geared for applications and hook themselves into the server.xml requiring a restart with special security settings. Putting the realm in my webapp's context.xml is where I want it. I've been googling and coding by trial and error for a day now. Are there any examples I could look at and adapt? My last attempt at JAAS yielded deployment errors. And, as usual, don't make us guess the Tomcat version you're using. I have 5.5.20, 6.0.13 and an embedded 6.0.16 in my NetBeans IDE. Thanks again.
RE: context.xml and custom realm
From: Jeff Powell [mailto:[EMAIL PROTECTED] Subject: RE: context.xml and custom realm But so far all the examples with JAAS don't show how to just create the minimal framework for a webapp. While it's true that a single JVM instance only allows specification of one login.config file at a time, that file can contain multiple entries, one for each webapp, if needed. Each JAAS Realm must have an appName attribute pointing to its subsection of the login.config file. Have you looked at the Tomcat doc for JAASRealm? http://tomcat.apache.org/tomcat-6.0-doc/realm-howto.html#JAASRealm That's pretty much all we used to get it running, other than the JVM's JAAS config. The key part is putting your LoginModule and Principal classes under the webapp's WEB-INF directory, putting the Realm inside the webapp's Context element, and setting useContextClassLoader to true. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
I created a auth.conf file in my $CATALINA_HOME/conf and pointed the JVM to it. /usr/local/apache-tomcat-6.0.16/auth.conf: dropInv { com.ips.security.UdLoginModule required; loginFile=VALIDATION; loginKey=100!IPS.DROP.AUTH; userAttr=3; credAttr=4; roleAttr=5; }; java.security: # # Default login configuration file # #login.config.url.1=file:${user.home}/.java.login.config login.config.url.3=file:///usr/local/apache-tomcat-6.0.16/auth.conf Re-deployed my application Re-started tomcat to pickup the changes and ... Jul 23, 2008 2:54:38 PM org.apache.catalina.core.AprLifecycleListener init INFO: The APR based Apache Tomcat Native library which allows optimal performance in production environments was not found on the java.library.path: /usr/java/jdk1.6.0_03/jre/lib/i386/client:/usr/java/jdk1.6.0_03/jre/lib/i386:/usr/java/jdk1.6.0_03/jre/../lib/i386:/usr/java/packages/lib/i386:/lib:/usr/lib Jul 23, 2008 2:54:39 PM org.apache.coyote.http11.Http11Protocol init INFO: Initializing Coyote HTTP/1.1 on http-8080 Jul 23, 2008 2:54:39 PM org.apache.catalina.startup.Catalina load INFO: Initialization processed in 1246 ms Jul 23, 2008 2:54:39 PM org.apache.catalina.core.StandardService start INFO: Starting service Catalina Jul 23, 2008 2:54:39 PM org.apache.catalina.core.StandardEngine start INFO: Starting Servlet Engine: Apache Tomcat/6.0.16 Jul 23, 2008 2:54:39 PM org.apache.catalina.realm.JAASRealm setUseContextClassLoader INFO: Setting useContextClassLoader = true Jul 23, 2008 2:54:39 PM org.apache.catalina.realm.JAASRealm setContainer INFO: Set JAAS app name dropInv Jul 23, 2008 2:54:39 PM org.apache.catalina.realm.JAASRealm parseClassNames SEVERE: Class com.ips.security.User not found! Class not added. Jul 23, 2008 2:54:39 PM org.apache.catalina.realm.JAASRealm parseClassNames SEVERE: Class com.ips.security.Roles not found! Class not added. Jul 23, 2008 2:54:40 PM org.apache.catalina.core.StandardContext addApplicationListener INFO: The listener com.sun.xml.ws.transport.http.servlet.WSServletContextListener is already configured for this context. The duplicate definition has been ignored. Jul 23, 2008 2:54:40 PM com.sun.xml.ws.transport.http.servlet.WSServletContextListener contextInitialized INFO: WSSERVLET12: JAX-WS context listener initializing Jul 23, 2008 2:54:42 PM com.sun.xml.ws.transport.http.servlet.WSServletDelegate init INFO: WSSERVLET14: JAX-WS servlet initializing Jul 23, 2008 2:54:43 PM org.apache.coyote.http11.Http11Protocol start INFO: Starting Coyote HTTP/1.1 on http-8080 Jul 23, 2008 2:54:43 PM org.apache.jk.common.ChannelSocket init INFO: JK: ajp13 listening on /0.0.0.0:8009 Jul 23, 2008 2:54:43 PM org.apache.jk.server.JkMain start INFO: Jk running ID=0 time=0/137 config=null Jul 23, 2008 2:54:43 PM org.apache.catalina.startup.Catalina start INFO: Server startup in 4534 ms Jul 23, 2008 2:54:43 PM org.apache.catalina.startup.HostConfig checkResources INFO: Undeploying context [/dropInv] Jul 23, 2008 2:54:43 PM org.apache.catalina.realm.JAASRealm setUseContextClassLoader INFO: Setting useContextClassLoader = true Jul 23, 2008 2:54:43 PM org.apache.catalina.realm.JAASRealm setContainer INFO: Set JAAS app name dropInv Jul 23, 2008 2:54:43 PM org.apache.catalina.realm.JAASRealm parseClassNames SEVERE: Class com.ips.security.User not found! Class not added. Jul 23, 2008 2:54:43 PM org.apache.catalina.realm.JAASRealm parseClassNames SEVERE: Class com.ips.security.Roles not found! Class not added. Jul 23, 2008 2:54:44 PM org.apache.catalina.core.StandardContext start INFO: Container org.apache.catalina.core.ContainerBase.[Catalina].[localhost].[/dropInv] has already been started What am I missing? TIA
RE: context.xml and custom realm
Typo in the context.xml SEVERE: Class com.ips.security.User not found! Class not added. Jul 23, 2008 2:54:43 PM org.apache.catalina.realm.JAASRealm parseClassNames SEVERE: Class com.ips.security.Roles not found! Class not added. Jul 23, 2008 2:54:44 PM org.apache.catalina.core.StandardContext start Now i get this Jul 23, 2008 3:23:51 PM org.apache.catalina.realm.JAASRealm authenticate SEVERE: Unexpected error java.lang.SecurityException: Unable to locate a login configuration at com.sun.security.auth.login.ConfigFile.init(ConfigFile.java:93) at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method) at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:39) at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:27) at java.lang.reflect.Constructor.newInstance(Constructor.java:513) at java.lang.Class.newInstance0(Class.java:355) at java.lang.Class.newInstance(Class.java:308) at javax.security.auth.login.Configuration $3.run(Configuration.java:246) at java.security.AccessController.doPrivileged(Native Method) at javax.security.auth.login.Configuration.getConfiguration(Configuration.java:241) at javax.security.auth.login.LoginContext $1.run(LoginContext.java:237) at java.security.AccessController.doPrivileged(Native Method) at javax.security.auth.login.LoginContext.init(LoginContext.java:234) at javax.security.auth.login.LoginContext.init(LoginContext.java:403) at org.apache.catalina.realm.JAASRealm.authenticate(JAASRealm.java:345) at org.apache.catalina.authenticator.FormAuthenticator.authenticate(FormAuthenticator.java:258) at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:417) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:128) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:286) at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:844) at org.apache.coyote.http11.Http11Protocol $Http11ConnectionHandler.process(Http11Protocol.java:583) at org.apache.tomcat.util.net.JIoEndpoint $Worker.run(JIoEndpoint.java:447) at java.lang.Thread.run(Thread.java:619) Caused by: java.io.IOException: Unable to locate a login configuration at com.sun.security.auth.login.ConfigFile.init(ConfigFile.java:250) at com.sun.security.auth.login.ConfigFile.init(ConfigFile.java:91) ... 24 more - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
Deploy dropInv.war on 6.0.13 production server and I get this again. Is JAAS broken? INFO: Deploying web application archive dropInv.war Jul 23, 2008 3:59:19 PM org.apache.catalina.realm.JAASRealm parseClassNames SEVERE: Class com.ips.security.UdUser not found! Class not added. Jul 23, 2008 3:59:19 PM org.apache.catalina.realm.JAASRealm parseClassNames SEVERE: Class com.ips.security.UdRoles not found! Class not added. Jul 23, 2008 3:59:19 PM org.apache.catalina.realm.JAASRealm setUseContextClassLoader INFO: Setting useContextClassLoader = true Jul 23, 2008 3:59:19 PM org.apache.catalina.realm.JAASRealm setContainer INFO: Set JAAS app name dropInv - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
From: Jeff Powell [mailto:[EMAIL PROTECTED] Subject: RE: context.xml and custom realm Deploy dropInv.war on 6.0.13 production server and I get this again. Is JAAS broken? No, you just haven't put the stated class in a usable location. What's in your Realm? What's in your Context? - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
From: Jeff Powell [mailto:[EMAIL PROTECTED] Subject: RE: context.xml and custom realm java.lang.SecurityException: Unable to locate a login configuration What do you have as the value of the system property java.security.auth.login.config? That has to be set to point to the login config (JAAS requirement). - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
?xml version=1.0 encoding=UTF-8? Context path=/dropInv Realm className=org.apache.catalina.realm.JAASRealm appName=dropInv userClassNames=com.ips.security.UdUser roleClassNames=com.ips.security.UdRoles useContextClassLoader=true / /Context I just added the appName for testing and it didn't help. com.ips.security.* is in the project .war file. Production server : JAVA_OPTS=-DJAVA_OPTS=-Djava.security.auth.login.config==/opt/tomcat/conf/jaas.config as well as the JVM settings similar to those on the dev server. Development Server: /usr/local/apache-tomcat-6.0.16/auth.conf: dropInv { com.ips.security.UdLoginModule required; loginFile=VALIDATION; loginKey=100!IPS.DROP.AUTH; userAttr=3; credAttr=4; roleAttr=5; }; java.security: # # Default login configuration file # #login.config.url.1=file:${user.home}/.java.login.config login.config.url.3=file:///usr/local/apache-tomcat-6.0.16/auth.conf - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
From: Jeff Powell [mailto:[EMAIL PROTECTED] Subject: RE: context.xml and custom realm I created a auth.conf file in my $CATALINA_HOME/conf and pointed the JVM to it. How? You should be setting the system property java.security.auth.login.config just for Tomcat rather than changing the global configuration, which affects every JVM execution on the system. /usr/local/apache-tomcat-6.0.16/auth.conf: dropInv { com.ips.security.UdLoginModule required; loginFile=VALIDATION; loginKey=100!IPS.DROP.AUTH; userAttr=3; credAttr=4; roleAttr=5; }; What do you expect JAAS to do with things above that aren't LoginModule class names? LoginModules are the only things allowed here. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
From: Jeff Powell [mailto:[EMAIL PROTECTED] Subject: RE: context.xml and custom realm ?xml version=1.0 encoding=UTF-8? Context path=/dropInv Remove the path attribute - it's not allowed. Realm className=org.apache.catalina.realm.JAASRealm appName=dropInv userClassNames=com.ips.security.UdUser roleClassNames=com.ips.security.UdRoles useContextClassLoader=true / /Context I just added the appName for testing and it didn't help. It's required so JAAS can locate the proper entry in the login config file. JAVA_OPTS=-DJAVA_OPTS=-Djava.security.auth.login.config== /opt/tomcat/conf/jaas.config What's in jaas.config? /usr/local/apache-tomcat-6.0.16/auth.conf: dropInv { com.ips.security.UdLoginModule required; loginFile=VALIDATION; loginKey=100!IPS.DROP.AUTH; userAttr=3; credAttr=4; roleAttr=5; }; What are the things after the LoginModule line? Only LoginModule class names are allowed here. java.security: Don't change java.security unless you really, really want what's in there to apply to *every* Java program run on that system. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
Won't they be passed in the Map options on the Init? How do I java.security.auth.login.config just for Tomcat ? I thought that's what the JAVA_OPTS=-DJAVA_OPTS=-Djava.security.auth.login.config==/opt/tomcat/con f/jaas.config did? -Original Message- From: Caldarale, Charles R [mailto:[EMAIL PROTECTED] Sent: Wednesday, July 23, 2008 4:27 PM To: Tomcat Users List Subject: RE: context.xml and custom realm From: Jeff Powell [mailto:[EMAIL PROTECTED] Subject: RE: context.xml and custom realm I created a auth.conf file in my $CATALINA_HOME/conf and pointed the JVM to it. How? You should be setting the system property java.security.auth.login.config just for Tomcat rather than changing the global configuration, which affects every JVM execution on the system. /usr/local/apache-tomcat-6.0.16/auth.conf: dropInv { com.ips.security.UdLoginModule required; loginFile=VALIDATION; loginKey=100!IPS.DROP.AUTH; userAttr=3; credAttr=4; roleAttr=5; }; What do you expect JAAS to do with things above that aren't LoginModule class names? LoginModules are the only things allowed here. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
Jaas.config is a typo should be jaas.conf has the same contents as auth.conf on the dev server. -Original Message- From: Caldarale, Charles R [mailto:[EMAIL PROTECTED] Sent: Wednesday, July 23, 2008 4:32 PM To: Tomcat Users List Subject: RE: context.xml and custom realm From: Jeff Powell [mailto:[EMAIL PROTECTED] Subject: RE: context.xml and custom realm ?xml version=1.0 encoding=UTF-8? Context path=/dropInv Remove the path attribute - it's not allowed. Realm className=org.apache.catalina.realm.JAASRealm appName=dropInv userClassNames=com.ips.security.UdUser roleClassNames=com.ips.security.UdRoles useContextClassLoader=true / /Context I just added the appName for testing and it didn't help. It's required so JAAS can locate the proper entry in the login config file. JAVA_OPTS=-DJAVA_OPTS=-Djava.security.auth.login.config== /opt/tomcat/conf/jaas.config What's in jaas.config? /usr/local/apache-tomcat-6.0.16/auth.conf: dropInv { com.ips.security.UdLoginModule required; loginFile=VALIDATION; loginKey=100!IPS.DROP.AUTH; userAttr=3; credAttr=4; roleAttr=5; }; What are the things after the LoginModule line? Only LoginModule class names are allowed here. java.security: Don't change java.security unless you really, really want what's in there to apply to *every* Java program run on that system. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
From: Jeffrey R. Powell [mailto:[EMAIL PROTECTED] Subject: RE: context.xml and custom realm Won't they be passed in the Map options on the Init? I have no idea what you're asking there. I thought that's what the JAVA_OPTS=-DJAVA_OPTS=-Djava.security.auth.login.config== /opt/tomcat/conf/jaas.config did? Except you made changes in /usr/local/apache-tomcat-6.0.16/auth.conf; make up your mind where you're going to put the login config file. Also, the JAVA_OPTS=-DJAVA_OPTS=-Detc. is non-sensical. Not quite sure what you're trying to achieve there. It's easiest just to set the JAVA_OPTS variable to whatever you need in Tomcat startup script or the process that runs the script. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
From: Jeffrey R. Powell [mailto:[EMAIL PROTECTED] Subject: RE: context.xml and custom realm Jaas.config is a typo should be jaas.conf has the same contents as auth.conf on the dev server. Let's stop confusing the issue and instead stick to just one system; once that one's sorted, you can work on the other. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
Well then let's just drop it. Thanks anyway. -Original Message- From: Caldarale, Charles R [mailto:[EMAIL PROTECTED] Sent: Wed 7/23/2008 4:39 PM To: Tomcat Users List Subject: RE: context.xml and custom realm From: Jeffrey R. Powell [mailto:[EMAIL PROTECTED] Subject: RE: context.xml and custom realm Jaas.config is a typo should be jaas.conf has the same contents as auth.conf on the dev server. Let's stop confusing the issue and instead stick to just one system; once that one's sorted, you can work on the other. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: context.xml and custom realm
From: Carol Cheung [mailto:[EMAIL PROTECTED] Subject: context.xml and custom realm Is it possible to place the realm and the database driver somewhere under webapps/appname and still have Tomcat find it? I really want to avoid having to restart Tomcat. If so, where should these be located? I think (not 100% positive) that this is possible only with the JAASRealm, when useContextClassLoader=true. You could write your custom realm to comply with the JAASRealm requirements, and then have your realm access the DB directly, rather than having Tomcat classes do it. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]