RE: Form Based Authentication

2005-10-11 Thread Caldarale, Charles R
From: Peter Bright [mailto:[EMAIL PROTECTED] Subject: Form Based Authentication It's point (c) that's proving problematic; there's no way to reauthenticate that I can see. What happens if you just invalidate the existing session? - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL

RE: Form Based Authentication

2005-10-11 Thread Peter Bright
-Original Message- From: Caldarale, Charles R [mailto:[EMAIL PROTECTED] Sent: 11 October 2005 17:18 To: Tomcat Users List Subject: RE: Form Based Authentication From: Peter Bright [mailto:[EMAIL PROTECTED] Subject: Form Based Authentication It's point (c) that's proving

RE: Form Based Authentication

2005-10-11 Thread Caldarale, Charles R
From: Peter Bright [mailto:[EMAIL PROTECTED] Subject: RE: Form Based Authentication It's point (c) that's proving problematic; there's no way to reauthenticate that I can see. What happens if you just invalidate the existing session? The user gets logged out. Exactly

RE: Form Based Authentication

2005-10-11 Thread Peter Bright
-Original Message- From: Caldarale, Charles R [mailto:[EMAIL PROTECTED] Sent: 11 October 2005 17:23 To: Tomcat Users List Subject: RE: Form Based Authentication From: Peter Bright [mailto:[EMAIL PROTECTED] Subject: RE: Form Based Authentication It's point (c

RE: Form Based Authentication

2005-10-11 Thread Frank W. Zammetti
: Caldarale, Charles R [mailto:[EMAIL PROTECTED] Sent: 11 October 2005 17:23 To: Tomcat Users List Subject: RE: Form Based Authentication From: Peter Bright [mailto:[EMAIL PROTECTED] Subject: RE: Form Based Authentication It's point (c) that's proving problematic; there's no way

RE: Form Based Authentication

2005-05-12 Thread David B. Saul
Never Mind - It was permissions on the tomcat-users.xml file. Duh! -Original Message- From: David B. Saul [mailto:[EMAIL PROTECTED] Sent: Thursday, May 12, 2005 7:37 PM To: 'Tomcat Users List' Subject: Form Based Authentication Having a problem being challenged on Linux. Form based

RE : Form Based Authentication

2005-05-11 Thread LERBSCHER Jean-Pierre
or redirect on login page). -Message d'origine- De : Wade Chandler [mailto:[EMAIL PROTECTED] Envoyé : mercredi 11 mai 2005 07:10 À : Tomcat Users List Objet : Re: Form Based Authentication Wade Chandler wrote: I have form based authentication working. But, I need the login form to be a little

Re: Form Based Authentication

2005-05-10 Thread Wade Chandler
Wade Chandler wrote: I have form based authentication working. But, I need the login form to be a little more dynamic. For instance, I want to use different forms for different areas and not always use the same form. Is this possible? For instance, under one site I want to limit URLs to

RE: FORM based authentication config

2004-12-21 Thread Goel, Manish Kumar
Hi, see this this might help you http://www.webservertalk.com/message633890.html cheers Manish -Original Message- From: Chris Chappell [mailto:[EMAIL PROTECTED] Sent: Tuesday, December 21, 2004 7:45 PM To: Tomcat Users List Subject: FORM based authentication config Hi I'm having

Re: FORM based authentication config

2004-12-21 Thread Chris Chappell
the error page Chris - Original Message - From: Goel, Manish Kumar [EMAIL PROTECTED] To: Tomcat Users List [EMAIL PROTECTED] Sent: Tuesday, December 21, 2004 2:26 PM Subject: RE: FORM based authentication config Hi, see this this might help you http://www.webservertalk.com/message633890

Re: FORM based authentication config

2004-12-21 Thread Viorel C.
On Tue, 2004-12-21 at 16:15, Chris Chappell wrote: Hi I'm having trouble getting form based authentication to work. Any help much appreciated. I'm missing something simple I'm sure. (TC 5.0.19, W2K, Mysql4) I am using a JDBC Realm which works fine with BASIC auth. After changing to FORM

RE: Form Based Authentication with Cookies?

2004-10-12 Thread Chris Ward
Chris, For what it's worth, I spent ages trying to get a remember-me login thing going out of the box but never managed it. In the end I implemented my own user/role setup and use a Filter to ensure the user is logged in when accessing servlets/ JSPs with specifice URL paths. The login page

Re: Form based authentication - last login

2004-09-03 Thread QM
On Fri, Sep 03, 2004 at 10:08:59AM +0200, [EMAIL PROTECTED] wrote: : IMHO the best sollution would be to intercept the authentication process (I'm working with Tomcat 4.x), to smuggle some custom code there that updates the appropriate column in the database. The question is.. how can I do

RE: form-based authentication question

2004-03-23 Thread Koes, Derrick
It may be good for someone to answer this, but I figured out my problem. I accidentally used the login page name where the welcome page name should have been in the servlet configuration. Cockpit error. -Original Message- From: Koes, Derrick Sent: Tuesday, March 23, 2004 2:49 PM

Re: Form Based Authentication - Registration

2004-02-14 Thread Adam Hardy
On 02/14/2004 10:31 AM Alexander F. Hartner wrote: No we want to add registration and have the following happen 1.) Customer requests access to a realm 2.) Redirect to login page 3.) Customer doesn't have an account yet and accesses registration page 4.) Customer registers 5.) On successful

RE: FORM based authentication referer

2004-01-21 Thread Guy Rouillier
Ricardo García wrote: Here's some starting context for my question I have a war file that has been configured to use FORM based authentication. I have set the form-login-page in the web.xml of the war file to point to a jsp file in my war file. When a user invokes any jsp without

RE: Form based authentication

2003-11-28 Thread Patrick Willart
Hello Atreya, Your stylesheet is returned after authentication because it is access restricted. If you make your stylesheet freely accessible it will work. grts, Patrick -Original Message- From: Atreya Basu [mailto:[EMAIL PROTECTED] Sent: Friday, November 28, 2003 8:01 AM To: Tomcat

Re: FORM based authentication pages

2003-11-12 Thread Tim Funk
Sorry, tomcat doesn't provide that functionality. A simple workaround is to keep those pages in a shared area then on site build (I hope your using ant), copy those files into your webapp. -Tim Ricardo García wrote: I have setup Tomcat 4.1 to use FORM based auth, but I've found myself

Re: FORM based authentication pages

2003-11-12 Thread Christopher Schultz
Ricardo, Is there a way to put those two pages in a location that is accessible by any context? If there is, how do I setup my web.xml file? You want the login pages for every webapp to look the same? If that's what you really want to do, I think you'll have to use symbolic links on the

Re: form-based authentication session.invalidate

2003-10-12 Thread Adam Hardy
Although I've no real idea what an internal tomcat SessionEvent is, it sounds like it's a bug. Give me the word and I'll enter it in bugzilla. Adam On 10/12/2003 01:57 AM Tim Funk wrote: Hmm. I always thought that when using the SSO valve, logging out of one webapp automatically logs you out

Re: form-based authentication session.invalidate

2003-10-11 Thread Tim Funk
Authentication information is somewhat stored in the session for form based authentication. (I can't remember the specifics) So using session.invalidate should log the user out. This works since the session id which is a cookie or URL rewriting scheme is what the browser keys in on. By

Re: form-based authentication session.invalidate

2003-10-11 Thread Adam Hardy
I have just figured out that the SSO in JSESSIONIDSSO stands for single-sign-on. I have the following JSP: remote user %=request.getRemoteUser() % in session %= session.getId() % % session.invalidate(); % and after doing a login, I saw I got JSESSIONID and JSESSIONIDSSO cookies. I then go to a

Re: form-based authentication session.invalidate

2003-10-11 Thread Tim Funk
Hmm. I always thought that when using the SSO valve, logging out of one webapp automatically logs you out of all webapps. The 5 code looks broken based on *very quick* inspection compared to 4.1 based on lines 304-308. if ( event.getData() != null logout.equals(

RE: form based authentication problem

2003-02-04 Thread Barney Hamish
I did something like that using struts. I wrote a base action class which all my other action classes extended. The base class performs any initialization (initializing objects in the session etc) as required. If you don't want to use struts you might consider using a filter. Hamish

Re: form based authentication problem

2003-02-04 Thread Ralf Lorenz
and error i guess! ralf - Original Message - From: Barney Hamish [EMAIL PROTECTED] To: 'Tomcat Users List' [EMAIL PROTECTED] Sent: Tuesday, February 04, 2003 1:35 PM Subject: RE: form based authentication problem I did something like that using struts. I wrote a base action class which

RE: form based authentication problem

2003-02-04 Thread Raible, Matt
? theoretically i'd say yes but who knows? try and error i guess! ralf - Original Message - From: Barney Hamish [EMAIL PROTECTED] To: 'Tomcat Users List' [EMAIL PROTECTED] Sent: Tuesday, February 04, 2003 1:35 PM Subject: RE: form based authentication problem I did

Re: Form-based authentication - can I get original URL?

2002-11-25 Thread Craig R. McClanahan
On Mon, 25 Nov 2002, Matt Raible wrote: Date: Mon, 25 Nov 2002 17:02:21 -0700 From: Matt Raible [EMAIL PROTECTED] Reply-To: Tomcat Users List [EMAIL PROTECTED] To: 'Tomcat Users List' [EMAIL PROTECTED] Subject: Form-based authentication - can I get original URL? On Tomcat 4/5, I am able

Re: Form-based authentication

2002-10-09 Thread Padhu Vinirs
Shouldnt the url format be http://url?user=xxxpassword=xxx ? Also, if you do this, you could encrypt the password it before calling sendRedirect and decrypt it at the url cgi. -- padhu Rajesh Kanderi wrote: how do you access a webpage which has a form-based authentication setup using java.

Re: Form Based Authentication, getting login and password

2002-10-05 Thread Nikola Milutinovic
Externo wrote: Sorry by my English. How I can guess login and password strings of an user, from error page (JSP) using Form Based Authentication of Tomcat? I need know it to lock the count each 3 error tries (if login is ok but password is bad, insteed). Something like enhanced

Re: form based authentication and remote user

2002-06-05 Thread anette mysel
PLEASE REMOVE ME FROM YOUR MAILING LIST. I DO NOT KNOW YOU. THANK YOU... - Original Message - From: Miguel Angel Medina Lopez [EMAIL PROTECTED] To: Tomcat Users [EMAIL PROTECTED] Sent: Wednesday, June 05, 2002 8:30 AM Subject: form based authentication and remote user Hi all: I'm

RE: Form-Based-Authentication with Tomcat 4.0.1

2002-04-10 Thread John Gregg
Hello all. I'm a little surprised how uncommon this problem seems to be on the list. Anyway, I'll tell you what I know and what to do about it. Until now we've been using a protected index.html page as the entrypoint for our app. However, we've had the same problem Frank had. Upon starting

RE: Form based authentication

2002-01-29 Thread Suchi Somasekar
Hi I have been using Tomcat 3.2.3 with form based authentication. It works great. However, I have an additional requirement now. We need to have another home page with the username and password boxes on the home page directly which when submitted must access a protected resource. I understand

RE: Form based Authentication / j_security_check not found

2001-12-18 Thread Guido Medina
Wait, go back to the beginning and try very slow, I passed the same, the problem with servlet is only in the web.xml file in your app, it is transparent to Apache Web server, look at the standard examples that comes with the Tomcat installation, first try as exercise to install the tomcat from

RE: Form based Authentication / j_security_check not found

2001-12-18 Thread Bongiorno.Christian
There is a jsp based form login example in the examples directory. That whole directory over to your servlet directory, change the login-config to use form based login (look at the example in ~/webapps/examples/WEB-INF/web.xml) This is a copy and paste trick -- nothing else. so... mkdir

RE: Form based Authentication / j_security_check not found

2001-12-18 Thread Larry Isaacs
I would recommend to first try sending all /DSCservlet requests to Tomcat and make sure everything works correctly that way. Once that is done, then try allowing Apache to serve some of the content. That way you will know if problems appear, they are configuration issues instead of web

Re: Form Based authentication problem

2001-09-27 Thread Kaneda K
This might be (I had a probleme that look the same with Mysql) so this might be that it need to be autoReconnect=true: connectionURL=jdbc:postgresql://192.168.0.17/tomcat_users became : connectionURL=jdbc:postgresql://192.168.0.17/tomcat_users?autoReconnect=true Try and give me your feed

Re: Form Based authentication problem

2001-09-27 Thread Miguel Angel Medina Lopez
? Miguel Ángel Medina López - Original Message - From: Kaneda K [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, September 27, 2001 10:01 AM Subject: Re: Form Based authentication problem This might be (I had a probleme that look the same with Mysql) so this might be that it need

Re: FORM-based authentication question

2001-09-07 Thread Craig R. McClanahan
On Fri, 7 Sep 2001, Kevin HaleBoyes wrote: Date: Fri, 7 Sep 2001 16:48:01 +0100 (BST) From: Kevin HaleBoyes [EMAIL PROTECTED] Reply-To: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: FORM-based authentication question I'm successfully using FORM-based logins in my application but I

Re: form-based authentication tomcat-apache

2001-05-27 Thread Michael Jennings
It worked! Thanks! -Mike - Original Message - From: Andrew Robson [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Saturday, May 26, 2001 8:14 PM Subject: Re: form-based authentication tomcat-apache Try putting JkMount /examples/jsp/security/login/j_security_check ajp13

Re: Form Based Authentication with Encryption

2001-03-07 Thread Andrew Robson
Hi Amit, I'm using 3.2 so details may vary. What you want to do is write your own authentication module. Easier than it sounds. Just take a copy of the authentication module you are using (SimpleRealm?) to use as a base for your own code. Add in the functionality you want, compile and include

Re: Form Based Authentication with Encryption

2001-03-07 Thread amit
? Thanks in advance. Regards, -Amit. - Original Message - From: Andrew Robson To: [EMAIL PROTECTED] Sent: Wednesday, March 07, 2001 3:37 PM Subject: Re: Form Based Authentication with Encryption Hi Amit, I'm using 3.2 so details may vary.What you want to do is

Re: Form Based Authentication with Encryption

2001-03-07 Thread Andrew Robson
ds, -Amit. - Original Message - From: Andrew Robson To: [EMAIL PROTECTED] Sent: Wednesday, March 07, 2001 3:37 PM Subject: Re: Form Based Authentication with Encryption Hi Amit, I'm using 3.2 so details may vary. What you want to do is write your own auth

Re: Form based authentication

2001-02-08 Thread Bill_Fellows/MO/americancentury
I've run into the same problem. I created an industrial strength bandaid for this problem by writing a simple servlet, mapped to /null, that redirects them where I want to go (which is defined in the web.xml). I've been too lazy to investigate what is actually throwing this so if anyone has

RE: Form based authentication and JDBC Realm with Interbase

2001-01-23 Thread Ignacio J. Ortega
Please post your server.xml JDBRealm config, to have a look at it.. Saludos , Ignacio J. Ortega -Mensaje original- De: Nigel Stirzaker [mailto:[EMAIL PROTECTED]] Enviado el: martes 23 de enero de 2001 12:41 Para: '[EMAIL PROTECTED]' Asunto: Form based authentication and JDBC Realm

RE: Form based authentication and JDBC Realm with Interbase

2001-01-23 Thread Nigel Stirzaker
Software Consultant SSA Softwright (01753) 811833 Ext 265 [EMAIL PROTECTED] www.Softwright.co.uk -Original Message- From: Ignacio J. Ortega [mailto:[EMAIL PROTECTED]] Sent: Tuesday 23 January 2001 12:07 To: '[EMAIL PROTECTED]' Subject: RE: Form based authentication and JDBC Realm with Int

RE: FORM BASED AUTHENTICATION...

2001-01-16 Thread BBueckers
I was using 3.1 and then I found the following post http://mikal.org/interests/java/tomcat_users/msg02828.html in which they were having the same types of problems I was experencing. So I installed ver 3.2.1 and everything works as originally anticipated. All the form based logins work. Bob

RE: FORM based Authentication and JDBC Realm

2001-01-05 Thread Nacho
please sendthe excerpt of your server.xml file with the requestinterceptor Thanks Saludos , Ignacio J. Ortega -Mensaje original- De: Vincent Harcq [mailto:[EMAIL PROTECTED]] Enviado el: viernes 5 de enero de 2001 17:45 Para: [EMAIL PROTECTED] Asunto: FORM based Authentication and JDBC