Re: Valve Access to Principal

2003-02-11 Thread Peter Kelley
OK I think I owe Craig an apology: There is no standard way to pass JAAS credentials between VM's. The way that JBoss does it is by using a piece of code called the ClientLoginModule which interacts with the JBoss RMI stubs to pass the credentials. Note that JBoss does a login on each call. The

Re: Valve Access to Principal

2003-02-10 Thread Peter Kelley
On Mon, 2003-02-10 at 18:30, Craig R. McClanahan wrote: On Sun, 10 Feb 2003, Peter Kelley wrote: Date: 10 Feb 2003 17:22:53 +1100 From: Peter Kelley [EMAIL PROTECTED] Reply-To: Tomcat Users List [EMAIL PROTECTED] To: Tomcat Users List [EMAIL PROTECTED] Subject: Re: Valve Access

Re: Valve Access to Principal

2003-02-10 Thread Erik Price
Craig R. McClanahan wrote: Tomcat 5 has integrated support for JSR 115, but that's for authorization, not authentication. Oh no, there's a difference? Is there an explanatory document somewhere that I missed? Erik -

RE: Valve Access to Principal

2003-02-10 Thread Shapira, Yoav
Howdy, http://www.itsecurity.com/asktecs/oct1801.htm Yoav Shapira Millennium ChemInformatics -Original Message- From: Erik Price [mailto:[EMAIL PROTECTED]] Sent: Monday, February 10, 2003 11:18 AM To: Tomcat Users List Subject: Re: Valve Access to Principal Craig R. McClanahan wrote

Re: Valve Access to Principal

2003-02-10 Thread Craig R. McClanahan
On Mon, 10 Feb 2003, Erik Price wrote: Date: Mon, 10 Feb 2003 11:17:31 -0500 From: Erik Price [EMAIL PROTECTED] Reply-To: Tomcat Users List [EMAIL PROTECTED] To: Tomcat Users List [EMAIL PROTECTED] Subject: Re: Valve Access to Principal Craig R. McClanahan wrote: Tomcat 5 has

Re: Valve Access to Principal

2003-02-09 Thread Peter Kelley
. McClanahan wrote: On Fri, 8 Feb 2003, Peter Kelley wrote: Date: 08 Feb 2003 17:29:10 +1100 From: Peter Kelley [EMAIL PROTECTED] Reply-To: Tomcat Users List [EMAIL PROTECTED] To: Tomcat Users List [EMAIL PROTECTED] Subject: Valve Access to Principal I'm writing a valve to associate

Re: Valve Access to Principal

2003-02-09 Thread Craig R. McClanahan
On Sun, 10 Feb 2003, Peter Kelley wrote: Date: 10 Feb 2003 14:31:23 +1100 From: Peter Kelley [EMAIL PROTECTED] Reply-To: Tomcat Users List [EMAIL PROTECTED] To: Tomcat Users List [EMAIL PROTECTED] Subject: Re: Valve Access to Principal Thanks Craig, this sounds like a much cleaner

Re: Valve Access to Principal

2003-02-09 Thread Peter Kelley
List [EMAIL PROTECTED] To: Tomcat Users List [EMAIL PROTECTED] Subject: Re: Valve Access to Principal Thanks Craig, this sounds like a much cleaner solution than what I eventually tried which was to copy the session grabbing code out of AuthenticatorBase and use it to get the required

Re: Valve Access to Principal

2003-02-09 Thread Craig R. McClanahan
On Sun, 10 Feb 2003, Peter Kelley wrote: Date: 10 Feb 2003 16:12:36 +1100 From: Peter Kelley [EMAIL PROTECTED] To: Tomcat Users List [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: Re: Valve Access to Principal I think you misunderstand my question, I want to run Tomcat standalone

Re: Valve Access to Principal

2003-02-09 Thread Peter Kelley
the code would be. On Mon, 2003-02-10 at 16:31, Craig R. McClanahan wrote: On Sun, 10 Feb 2003, Peter Kelley wrote: Date: 10 Feb 2003 16:12:36 +1100 From: Peter Kelley [EMAIL PROTECTED] To: Tomcat Users List [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: Re: Valve Access to Principal

Re: Valve Access to Principal

2003-02-09 Thread Peter Kelley
On Mon, 2003-02-10 at 17:22, Peter Kelley wrote: All of this seems to be working in the debugger correctly. The problem is that the JAAS security association that I am doing seems to be with the wrong thread or something because by the time JBoss sees it the subject is the one of the user who

Re: Valve Access to Principal

2003-02-09 Thread Craig R. McClanahan
On Sun, 10 Feb 2003, Peter Kelley wrote: Date: 10 Feb 2003 17:22:53 +1100 From: Peter Kelley [EMAIL PROTECTED] Reply-To: Tomcat Users List [EMAIL PROTECTED] To: Tomcat Users List [EMAIL PROTECTED] Subject: Re: Valve Access to Principal OK I'm still not sure we are talking on the same

Valve Access to Principal

2003-02-07 Thread Peter Kelley
I'm writing a valve to associate a request with a subject using JAAS. To do this I need to get access to the userPrincipal from the request or the session. Unfortunately the method that sets this association in org.apache.catalina.authenticator.AuthenticatorBase gets called AFTER my valve meaning

Re: Valve Access to Principal

2003-02-07 Thread Craig R. McClanahan
On Fri, 8 Feb 2003, Peter Kelley wrote: Date: 08 Feb 2003 17:29:10 +1100 From: Peter Kelley [EMAIL PROTECTED] Reply-To: Tomcat Users List [EMAIL PROTECTED] To: Tomcat Users List [EMAIL PROTECTED] Subject: Valve Access to Principal I'm writing a valve to associate a request with a subject

Re: Valve Access to Principal

2003-02-07 Thread Bill Barker
in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... On Fri, 8 Feb 2003, Peter Kelley wrote: Date: 08 Feb 2003 17:29:10 +1100 From: Peter Kelley [EMAIL PROTECTED] Reply-To: Tomcat Users List [EMAIL PROTECTED] To: Tomcat Users List [EMAIL PROTECTED] Subject: Valve Access to P