On 12.10.2011 22:47, André Warnier wrote:
Marcel Stör wrote:
Scenario: use Integrated Windows Security (Kerberos/NTLM) for the site
in IIS that delegates to Tomcat.
Question: would the ISAPI connector be able to pass the Active
Directory groups (i.e. user's membership info) along to Tomcat in
On 13.10.2011 00:14, chris derham wrote:
- it would probably require serious coding changes to do it (notably
because in the AJP protocol, there is no attribute or packet type foreseen
to pass such information per se)
- and there are some conceptual issues linked to this, essentially because
On 13/10/2011 07:41, Marcel Stör wrote:
On 12.10.2011 22:47, André Warnier wrote:
Marcel Stör wrote:
Scenario: use Integrated Windows Security (Kerberos/NTLM) for the site
in IIS that delegates to Tomcat.
Question: would the ISAPI connector be able to pass the Active
Directory groups (i.e.
On 13.10.2011 10:38, Mark Thomas wrote:
On 13/10/2011 07:41, Marcel Stör wrote:
On 12.10.2011 22:47, André Warnier wrote:
Marcel Stör wrote:
Scenario: use Integrated Windows Security (Kerberos/NTLM) for the site
in IIS that delegates to Tomcat.
Question: would the ISAPI connector be able to
On 13.10.2011 06:16, Jorge Medina wrote:
I have Apache (2.2.20) in front of a single Tomcat (6.0.32) instance
using mod_jk (1.2.31) with the AJP protocol.
I am getting errors like the sample below frequently (a few hundred
times a day). The server does not have a heavy load, it serves about
On 13/10/11 05:29, Konstantin Kolinko wrote:
What happens when an non-authenticated user accesses one of those webapps?
It just rejects it with 403, or it should display a login form (and
authenticate him/her and create a SSO cookie), or redirect to another
webapp that has a login form?
Kerberos is cross platform standard, allowing for groups to be embedded in
the token. Nothing windows specific about that. I've definitely had windows
primary domain controller and clients running on Windows talking to a
tomcat
running on Linux, and allowing access to the group info in the
Hi, my name is Alejandro, I am working with Tomcat 7.0.20 and I need to know
how can I apply filters to j_security_check to verify the status of login
before continue with my authentication process.
I was thinking to use valves, but I read on internet that valves will be
replaced with Filters -
On 13/10/11 11:39, Brian Burch wrote:
To summarise: the webapp's explicit timeout is not being honoured
because its web.xml does not define a login-config section. Therefore,
the webapp has defaulted to use the NonLoginAuthenticator - which
honours the existing SSO state (via the client cookie),
On 13/10/11 15:14, Brian Burch wrote:
I beleve the division of responsibilities between the AuthenticatorBase
abstract class and its extension classes is wrong. At the moment, it is
the responsibility of the concrete class authenticate methods to add the
Session to the existing SingleSignOnEntry
Thanks Rainer, now I know where to direct the troubleshooting efforts.
Seems I have some networking issue.
On Thu, Oct 13, 2011 at 6:30 AM, Rainer Jung rainer.j...@kippdata.de wrote:
On 13.10.2011 06:16, Jorge Medina wrote:
I have Apache (2.2.20) in front of a single Tomcat (6.0.32) instance
On 13/10/2011 15:09, Alejandro Soto wrote:
Hi, my name is Alejandro, I am working with Tomcat 7.0.20 and I need to know
how can I apply filters to j_security_check to verify the status of login
before continue with my authentication process.
You can't use Filters because the Authentication
On 13/10/11 15:14, Brian Burch wrote:
On 13/10/11 11:39, Brian Burch wrote:
To summarise: the webapp's explicit timeout is not being honoured
because its web.xml does not define a login-config section. Therefore,
the webapp has defaulted to use the NonLoginAuthenticator - which
honours the
Hi, thanks for reply, well, what i need is to know if the authentication was
successful or not, I want to get the status of that authentication, I just
need to know that status and has to be before the authentication mechanism
continues.
I am trying to invoke j_security_check from inside another
From: Alejandro Soto [mailto:smalejan...@gmail.com]
Subject: Re: filters on j_security_check
what i need is to know if the authentication was successful or not
What are you going to do with said information?
I just need to know that status and has to be before the authentication
Hi Chuck, call j_security_check from inside another servlet is just an idea,
why is bad idea?
If possible, I don't want a custom Realm, I want to use the authentication
mechanism of the container (JDBCRealm), use something like this:
.
Context context = (Context)
From: Alejandro Soto [mailto:smalejan...@gmail.com]
Subject: Re: filters on j_security_check
call j_security_check from inside another servlet is
just an idea, why is bad idea?
Because it's not supported by the spec; please read SRV.12. If you want to do
programmatic security in addition
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Chuck,
On 10/13/2011 2:11 PM, Caldarale, Charles R wrote:
From: Alejandro Soto [mailto:smalejan...@gmail.com] Subject: Re:
filters on j_security_check
what i need is to know if the authentication was successful or
not
What are you going to
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Konstantin,
On 10/12/2011 9:22 PM, Konstantin Kolinko wrote:
Yes, if you want your webapp to be deployed at a subdirectory
path, such as foo/bar/baz, myapp/help, myapp/tests etc., you
cannot just name it foo/bar/baz.war. So '/' has to be replaced
Si no puedes ver este mensaje da clic aqui
?
?
?
?
?
?
?
?
?
?
?
?
?
?
?
?
?
? Insert your HTML code here. De acuerdo a la Ley Federal de Proteccion de
Datos Personales en Posesion de los Particulares, aprobada el dia 13 de abril
de 2010 en los articulos 3, Fracciones II y VII, y 33, asi como
Hello
The problem:
Tomcat started successfully but the deployed webapp did not work
because the appbase directory was deleted partially.
Maybe the directory was deletedby mistake without user's
intention.
Can Tomcat delete appbase directory except in the case
21 matches
Mail list logo
