I tried to use form based authentication with JNDIRealm. What I want to
accomplish is to have the two applications with the same realm be
authenticated once. It seems the tomcat ignored the realm. I have to
login twice. For example: when I login to http://localhost:8080/app1
successfully
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Jill,
On 4/22/2009 10:46 AM, Jill Han wrote:
I tried to use form based authentication with JNDIRealm. What I want to
accomplish is to have the two applications with the same realm be
authenticated once. It seems the tomcat ignored the realm. I
-Original Message-
From: Christopher Schultz [mailto:ch...@christopherschultz.net]
Sent: Wednesday, April 22, 2009 11:11 AM
To: Tomcat Users List
Subject: Re: form based authentication
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Jill,
On 4/22/2009 10:46 AM, Jill Han wrote:
I tried to use form
From: Jill Han [mailto:jill@alverno.edu]
Subject: RE: form based authentication
However, this makes authentication activated only once although the
applications have different realms.
To quote from the SSO doc:
All web applications configured for this virtual host must share the same
Message-
From: Caldarale, Charles R [mailto:chuck.caldar...@unisys.com]
Sent: Wednesday, April 22, 2009 12:12 PM
To: Tomcat Users List
Subject: RE: form based authentication
From: Jill Han [mailto:jill@alverno.edu]
Subject: RE: form based authentication
However, this makes
: Wednesday, April 22, 2009 2:12 PM
To: 'Tomcat Users List'
Subject: RE: form based authentication
There is single Host in server.xml
Engine name=Catalina defaultHost=localhost
...
Realm className=org.apache.catalina.realm.JNDIRealm
debug=99
connectionName
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Jill,
On 4/22/2009 3:11 PM, Jill Han wrote:
What I want to do is all the applications have the same realm config
in server.xml.
That's not what you said earlier: you said you wanted /certain/
applications to have SSO behavior. SSO works by
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Charl,
Charl Gerber wrote:
I have an application using form based authentication. Is it possible
to use the same form as a stand-alone login screen?
Tomcat does not allow this use case because it is not covered by the
servlet specification
Hi,
I have an application using form based authentication. Is it possible to use
the same form as a stand-alone login screen? Default, if you enter the url of
the form manually (or get it from your browser's history) and you submit it,
you get an error message. You always have a smart-ass who
Hi,
regarding the error-page idea i have tried this and this does not work but
thinking about it, for form based authentication you have to define a
mandatory error page anyway so this would have precendence over any error
page defined else where. A login failure always flows back to the page
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
David,
david.melia wrote:
| Also, i have checked out the JNDIRealm source code and it only seems
to log
| any exception but not throw it back (seems to pass a null Principal
back to
| the calling code to signify you could not log on). If this is
yeah, Dave, will do.
-Original Message-
From: david.melia [mailto:[EMAIL PROTECTED]
Sent: Thursday, April 10, 2008 3:59 AM
To: users@tomcat.apache.org
Subject: RE: JNDIRealm - how to display login exceptions/error msg
within form-error-page when using Form based authentication?
Hi
-error-page-when-using-Form-based-authentication--tp16585051p16585051.html
Sent from the Tomcat - User mailing list archive at Nabble.com.
-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL
From: Propes, Barry L [mailto:[EMAIL PROTECTED]
Subject: RE: JNDIRealm - how to display login
exceptions/error msg within form-error-page when using Form
based authentication?
I believe you can only set one standard error page in the XML
file, if I'm not mistaken, at least
).
-Original Message-
From: david.melia [mailto:[EMAIL PROTECTED]
Sent: Wednesday, April 09, 2008 7:26 AM
To: users@tomcat.apache.org
Subject: JNDIRealm - how to display login exceptions/error msg within
form-error-page when using Form based authentication?
Hi,
I currently have a web
From: Propes, Barry L [mailto:[EMAIL PROTECTED]
Subject: RE: JNDIRealm - how to display login
exceptions/error msg within form-error-page when using Form
based authentication?
even for my antiquated version, Chuck? 4.1.36?
It's been in the servlet spec since at least 2.2, so it should
ok, thanks.
-Original Message-
From: Caldarale, Charles R [mailto:[EMAIL PROTECTED]
Sent: Wednesday, April 09, 2008 11:47 AM
To: Tomcat Users List
Subject: RE: JNDIRealm - how to display login exceptions/error msg
within form-error-page when using Form based authentication?
From
based authentication?
From: Propes, Barry L [mailto:[EMAIL PROTECTED]
Subject: RE: JNDIRealm - how to display login
exceptions/error msg within form-error-page when using Form
based authentication?
I believe you can only set one standard error page in the XML
file, if I'm not mistaken
Hello,
I would like to have an extra field in my form-based login page, but I'm
wondering how I can retrieve the value of that extra field within my
application (request.getParameter(blabla) does not work).
I searched the web and a suggestion was to override authenticate() in
In form based authentication - you have no access to the processor other
than your suggestion of overriding authenticate() in FormAuthenticator.
Depending on the purpose of the field you could always perform a kludge
of setting the 3rd value in a cookie and have a filter check for hte
cookie
in that case ... wouldn't the User-Agent header do the trick?
-Tim
dirk ooms wrote:
interesting suggestion, but in my case the extra field is not related to the
username. i would like to have a field where the user indicates on what type
of device he/she works, so we can offer the appropriate
based authentication - you have no access to the processor
other than your suggestion of overriding authenticate() in
FormAuthenticator.
Depending on the purpose of the field you could always perform a
kludge of setting the 3rd value in a cookie and have a filter check
for hte cookie
On Thursday 13 December 2007 13:54, Tim Funk wrote:
in that case ... wouldn't the User-Agent header do the trick?
AFAIK not, the screenwidth is the main thing i want to adapt to and i can have
Firefox/Linux running on a webtablet with 800px screen, but also on a desktop
with 1900px.
-Tim
Providing a separate form to choose layout would be far easier to do and
maintain.
Login form should contains only login informations (cf J2EE specs). If
you want to play with customization of login form that go beyong what is
allowed by j2EE security model, just forget container managed
[mailto:[EMAIL PROTECTED]
Sent: Thursday, December 13, 2007 5:00 AM
To: users@tomcat.apache.org
Subject: extra field in form-based authentication
Hello,
I would like to have an extra field in my form-based login page, but I'm
wondering how I can retrieve the value of that extra field within my
: Thursday, December 13, 2007 6:49 AM
To: users@tomcat.apache.org
Cc: David Delbecq
Subject: Re: extra field in form-based authentication
interesting suggestion, but in my case the extra field is not related to the
username. i would like to have a field where the user indicates on what type
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
David,
David Delbecq wrote:
Login form should contains only login informations (cf J2EE specs).
I agree that login forms should only contain login information, but I
question the J2EE spec's interpretation of what should be considered
login
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Lb,
lightbulb432 wrote:
The requirement doesn't accept having two tables (i.e. userTableA and
userTableB), partly because increased maintenance, the possibility of table
definitions going out of sync, etc.
CREATE VIEW, anyone?
- -chris
-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
--
View this message in context:
http://www.nabble.com/Single-sign-on-without-form-based-authentication-tf3805975.html#a12410535
Sent from the Tomcat - User mailing
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Lb,
lightbulb432 wrote:
Views would definitely allow me to keep the two tables separate, but then I'd
have to authenticate against the two source tables separately (i.e. each
application would point to the source table rather than to the view). If
this message in context:
http://www.nabble.com/Single-sign-on-without-form-based-authentication-tf3805975.html#a12415130
Sent from the Tomcat - User mailing list archive at Nabble.com.
-
To start a new topic, e-mail: users
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Lb,
lightbulb432 wrote:
Anytime I want to use more than two credentials, I have to provide my
own Realm implementation. But the only time I need to do the String
concatentation is when at least one of the additional credentials
(i.e. beyond
application.
--
View this message in context:
http://www.nabble.com/Single-sign-on-without-form-based-authentication-tf3805975.html#a12374143
Sent from the Tomcat - User mailing list archive at Nabble.com.
-
To start a new topic, e
Is there anyway to allow both client-cert authentication and form-based
authentication to work together in Tomcat? or J2EE web servers in
general?
I'd like to have users to log in to an web app using either user cert or
username/password. If a user doesn't have a cert, the login page will
show
, you have a link to the SSL easy access page.
Something like that... interesting project.
- Original Message -
From: Nick Duan [EMAIL PROTECTED]
To: users@tomcat.apache.org
Sent: Wednesday, June 20, 2007 2:17 PM
Subject: Combining form-based authentication with client-cert
You could call the authenticate()-method from Tomcat's FormAuthenticator:
-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
--
View this message in context:
http://www.nabble.com/Single-sign-on-without-form-based
in $CATALINA_HOME/server/lib/catalina.jar there's a file catalina.properties.
There your will find the following entries:
BASIC=org.apache.catalina.authenticator.BasicAuthenticator
CLIENT-CERT=org.apache.catalina.authenticator.SSLAuthenticator
PROTECTED]
--
View this message in context:
http://www.nabble.com/Single-sign-on-without-form-based-authentication-tf3805975.html#a10787517
Sent from the Tomcat - User mailing list archive at Nabble.com.
-
To start a new
Gregor Schneider wrote:
Well, subclassing FormAuthenticator would be a hack, a
Tomcat-only-solution and inho a bad one.
therefore, take a look at JAASRealm and try to combine it with your
existing login-procedure, meaning
- Implement a JAASRealm
- get the credentials from there (user,
at least you've saved *half* of the time ;)
cheers
greg
--
what's puzzlin' you, is the nature of my game
gpgp-fp: 79A84FA526807026795E4209D3B3FE028B3170B2
gpgp-key available @ http://pgpkeys.pca.dfn.de:11371
-
To start a new
well, we can't tell you the whole desigh of your_app-to-be but gave
you some starting-points. now it's up to you to use them.
however, i do not see any sense at all passing more tha two
credentials (user, pass) to authenticate
therefore, i suggest first thing you should do is to re-think
Is it correct to say that you lose the ability to have single-sign on across
multiple contexts if you go with a custom login solution (e.g. checking
login form fields in a servlet and, if correct, setting a “login” session
attribute to true) as opposed to standard form-based authentication?
How
I noticed the MemoryRealm / form-based authentication example in Tomcat
6.0 is broken. The example works just fine in Tomcat 5.5, but in the
migration to 6.0, it got broken. According to the doc at
http://tomcat.apache.org/tomcat-6.0-doc/realm-howto.html
the app is supposed to be available
On 5/2/07, Frank McCown [EMAIL PROTECTED] wrote:
The default contents of the conf/tomcat-users.xml file *should* be
tomcat-users
user name=tomcat password=tomcat roles=tomcat /
user name=role1 password=tomcat roles=role1 /
user name=both password=tomcat roles=tomcat,role1 /
Rémy Maucherat wrote:
On 5/2/07, Frank McCown [EMAIL PROTECTED] wrote:
The default contents of the conf/tomcat-users.xml file *should* be
tomcat-users
user name=tomcat password=tomcat roles=tomcat /
user name=role1 password=tomcat roles=role1 /
user name=both password=tomcat
Sorry for the long explanation but this is a tricky problem that has me
stumped. I hope someone else has experienced this.
We are having a strange problem with FORM based authentication that we can't
figure out. It seems to be an issue with the tomcat
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Steven,
Steven Rock wrote:
Sorry for the long explanation but this is a tricky problem that has me
stumped. I hope someone else has experienced this.
When you build your URL using javascript, make sure to run the URL
through
Hello,
I'm having problems getting the form-based authentication example that
ships with Tomcat 6 to work properly.
I have followed all the instructions at
http://tomcat.apache.org/tomcat-6.0-doc/realm-howto.html
to make the form authentication example using MemoryRealm to work for
http
If i deploy the war file
http://www.onjava.com/onjava/2002/06/12/examples/security-form-based.war
it works fine. If i place a main.html file in the protected folder, i
get and error 404 for the
following:
http://127.0.0.1:8080/security-form-based/protected/main.html
With a different war file
security in a servlet.. good luck
- Original Message -
From: SANGAMESHWAR ALLADI [EMAIL PROTECTED]
To: users@tomcat.apache.org
Sent: Monday, March 12, 2007 7:54 AM
Subject: how to intimate the user when his session invalidation occurs in
form based authentication
*Scenario :*
I have
page and the access to it is protected by
Container using form based authentication. So when ever a request goes to
server, it sends a login page for the authentication.
The index page consists of two frames. One having the menu of this
application and other having the content of the menu item
Hi to everyone. I'm developing a JSP application with form-based
authentication (with user data stored in an OpenLDAP directory) running in
Tomcat 5.5. The application has two features: a web portal and a WAP portal.
The file web.xml is configured with the necessary security constraints
@tomcat.apache.org
Sent: Wednesday, November 29, 2006 1:54 PM
Subject: Form Based Authentication : connection and bind to directory
problems
I'm trying to use form based authentication with JNDIRealm to validate
users
in an Active Directory Application Mode (ADAM) directory. I have a small
test
, dissemination,
distribution or copying of it or its
contents
- Original Message -
From: Christopher Buffington [EMAIL PROTECTED]
To: Tomcat Users List users@tomcat.apache.org; Martin Gainty [EMAIL
PROTECTED]
Sent: Monday, December 04, 2006 5:40 PM
Subject: Re: Form Based Authentication
I'm trying to use form based authentication with JNDIRealm to validate users
in an Active Directory Application Mode (ADAM) directory. I have a small
test app working; however, I must enable anonymous binds in ADAM or provide
the username and password in the realm element. Obviously both
IIRC there is no way to do that. As an alternative, you can hack
JNDIRealm to have it do what you wish.
-Tim
Christopher Buffington wrote:
I'm trying to use form based authentication with JNDIRealm to validate
users
in an Active Directory Application Mode (ADAM) directory. I have a small
PM
Subject: Form Based Authentication : connection and bind to directory problems
I'm trying to use form based authentication with JNDIRealm to validate users
in an Active Directory Application Mode (ADAM) directory. I have a small
test app working; however, I must enable anonymous binds
Buffington [EMAIL PROTECTED]
To: users@tomcat.apache.org
Sent: Wednesday, November 29, 2006 1:54 PM
Subject: Form Based Authentication : connection and bind to directory problems
I'm trying to use form based authentication with JNDIRealm to validate users
in an Active Directory Application
When I call request.getUserPrincipal(); I still get the Principal back
and I can still call request.isUserInRole( Foo ); and get a valid
response for the currently logged in user.
John
From: John McPeek [mailto:[EMAIL PROTECTED]
Subject: FORM based authentication LOGOUT
I have tried
that the request needs to be recycled
(or a new session created) before getUserPrincipal and isUserInRole will
return different values. Just a thought?
-chris
John
From: John McPeek [mailto:[EMAIL PROTECTED] Subject: FORM based
authentication LOGOUT
I have tried to invalidate the session
Hi,
I have written a JAAS LoginModule and use it with FORM based
authentication. Everything works fine, except I can't figure out how to
log a user out. I have tried to invalidate the session and get a new
one. No Dice. I did a search on the source and didn't find much. There
are articles
From: John McPeek [mailto:[EMAIL PROTECTED]
Subject: FORM based authentication LOGOUT
I have tried to invalidate the session and get a new one.
No Dice.
When you say No Dice, what actually happens?
All the admin app for Tomcat does is the following, which seems to work
too bad. resin has this
On 1/18/06, Mark Thomas [EMAIL PROTECTED] wrote:
Leonardo Kenji Shikida wrote:
using tomcat´s form-based authentication (j_username and
j_password), is there any support for remember me feature? (saving
encripted password into a cookie and reading it back
101 - 164 of 164 matches
Mail list logo