Re: Access to source IP address during authentication and authorization

2017-08-08 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Zemian, On 8/8/17 9:36 AM, Zemian Deng wrote: > Hi, how about extends the > "org.apache.catalina.authenticator.AuthenticatorBase"? or extends > "FormAuthenticator" if you are using form based. The base class is > actually a Valve, thus provide the

Re: Access to source IP address during authentication and authorization

2017-08-08 Thread Zemian Deng
Hi, how about extends the "org.apache.catalina.authenticator.AuthenticatorBase"? or extends "FormAuthenticator" if you are using form based. The base class is actually a Valve, thus provide the "Request" object access. And to use it, just simply add as a valve in your context xml file. If I underst

Re: Access to source IP address during authentication and authorization

2017-08-08 Thread Mark Thomas
On 08/08/17 14:01, Christopher Schultz wrote: > Mark, > > On 8/8/17 8:49 AM, Mark Thomas wrote: >> On 08/08/17 13:44, Christopher Schultz wrote: > >> > >>> I have no problem with Tomcat having access to the IP address. I >>> just want Tomcat to make that IP address available to the >>> authenti

Re: Access to source IP address during authentication and authorization

2017-08-08 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Mark, On 8/8/17 8:49 AM, Mark Thomas wrote: > On 08/08/17 13:44, Christopher Schultz wrote: > > > >> I have no problem with Tomcat having access to the IP address. I >> just want Tomcat to make that IP address available to the >> authenticator co

Re: Access to source IP address during authentication and authorization

2017-08-08 Thread Mark Thomas
On 08/08/17 13:44, Christopher Schultz wrote: > I have no problem with Tomcat having access to the IP address. I just > want Tomcat to make that IP address available to the authenticator > component in some way. https://bz.apache.org/bugzilla/show_bug.cgi?id=59750 Implementing that in a way th

Re: Access to source IP address during authentication and authorization

2017-08-08 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Markus, On 8/8/17 8:21 AM, i...@flyingfischer.ch wrote: > > Am 08.08.2017 um 14:05 schrieb Christopher Schultz: >> All, >> >> In spite of my (somewhat) recent work on the CredentialHandlers, >> I haven't been using Tomcat's container-provider auth

Re: Access to source IP address during authentication and authorization

2017-08-08 Thread tomcat
On 08.08.2017 14:21, i...@flyingfischer.ch wrote: Am 08.08.2017 um 14:05 schrieb Christopher Schultz: All, In spite of my (somewhat) recent work on the CredentialHandlers, I haven't been using Tomcat's container-provider authentication and authorization for over a decade. This is because I nee

Re: Access to source IP address during authentication and authorization

2017-08-08 Thread i...@flyingfischer.ch
Am 08.08.2017 um 14:05 schrieb Christopher Schultz: > All, > > In spite of my (somewhat) recent work on the CredentialHandlers, I > haven't been using Tomcat's container-provider authentication and > authorization for over a decade. This is because I need access to the > user's source IP address f

Access to source IP address during authentication and authorization

2017-08-08 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 All, In spite of my (somewhat) recent work on the CredentialHandlers, I haven't been using Tomcat's container-provider authentication and authorization for over a decade. This is because I need access to the user's source IP address for auditing whe