DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://nagoya.apache.org/bugzilla/show_bug.cgi?id=26495>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.
http://nagoya.apache.org/bugzilla/show_bug.cgi?id=26495 JDBCRealm and DataSourceRealm with case insensitive user names Summary: JDBCRealm and DataSourceRealm with case insensitive user names Product: Tomcat 5 Version: 5.0.18 Platform: All OS/Version: All Status: NEW Severity: Enhancement Priority: Other Component: Catalina AssignedTo: [EMAIL PROTECTED] ReportedBy: [EMAIL PROTECTED] Both the JDBCRealm and the DataSourceRealm don't handle tables with case insensitive user names very well: Users can enter any capitalisation, but request.getRemoteUser() does not normalize the user name to the exact capitalisation stored in the database table. Instead, it returns the (variable) spelling user by the user who just logged on. My proposal is to change JDBCRealm and DataSourceRealm in a way that the Realm implementation reads the user name contained in the database along with the password (SELECT userName, credentials FROM users WHERE userName = ?) and store the retrieved user name in the Credentials object. I could provide patches for Tomcat 4.1 and 5.0, but like to know if this change has got any chance of being accepted. Regards, Andreas --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
