Re: FW: JAAS Realm with JDBC Authentication
Please ask your questions. Am Dienstag, 7. Juli 2009 00:51:29 schrieb Geofrey Rainey: Hi Mark, Yes i've read that document many times. However still need a few pointers on writing the Login Module and how it integrates with the Callbackhandler to create the popup dialog. I can't really find any comprehensive doco on this. regards, Geoff. -Original Message- From: Mark Thomas [mailto:ma...@apache.org] Sent: Tuesday, 7 July 2009 10:44 a.m. To: Tomcat Users List Subject: Re: FW: JAAS Realm with JDBC Authentication Geofrey Rainey wrote: Hello, I'm writing a Login Module to autheniticate users and basing my code on the example provided by Sun whereby the CallBackHandler prompts users from the command line. However I'd like to do this using the web server dialog box and JDBC auth to the database. Any ideas would be helpful. Look at Tomcat's own JAASRealm and DataSourceRealm. Mark - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org == For more information on the Television New Zealand Group, visit us online at tvnz.co.nz == CAUTION: This e-mail and any attachment(s) contain information that is intended to be read only by the named recipient(s). This information is not to be used or stored by any other person and/or organisation. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: FW: JAAS Realm with JDBC Authentication
Am Dienstag, 7. Juli 2009 13:55:17 schrieb Geofrey Rainey: However I'm now under the impression that the JAASRealm has a built-in callback hander that does this. Is this correct? That's what the how-to says under 1. (See http://tomcat.apache.org/tomcat-6.0-doc/realm-howto.html#JAASRealm ) The LoginModule will receive the callbacks via it's initialize method: public void initialize(Subject subject, CallbackHandler callbackHandler, Map sharedState, Map options) Best Regards, Oliver Block - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
How to enable debug log level?
Hello everybody, I discovered those logging instruction in the tomcat sources: if (log.isDebugEnabled()) log.debug( Not subject to any constraint); how can I set up my tomcat to return true to log.isDebugEnables() ? Best Regards, Oliver Block - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Form-based authentication
Am Sonntag, 21. Juni 2009 01:34:29 schrieb Caldarale, Charles R: [...] you hard-code the single role name in the LoginModule, using whatever value you have in web.xml (currently User). You must have a role class that implements Principal and Serializable (in addition to the Principal class for the user name); this role class must be specified in your Realm element via the roleClassName attribute. Create an instance of the role class with the predefined name and add it to the Subject object's principals set in your commit() method after you have added the user name Principal object. By adding a roleClassName to the Realm descriptor (context.xml) and by adding a RolePrincipal to the subject solved my problem of authentication failures. Thank you. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
jaas.config / JAASRealms
Hello, on the development pc I've put the jaas.config file to my home directory. As I am running tomcat from netbeans, that's no problem. I've modified jdk/jre/lib/security/java.security to find the jaas.config. Is it compatible with the jaas design to keep web applicaton specific jaas.config files and are there any directives for web.xml to declare the path to jaas.config? Best Regards, Oliver Block - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Form-based authentication
Hello everybody, If this is not the appropriate mailing list, please tell me which mailing list I should use. I have writte a first jaas login module and it does authenticate users by logging into an imap server. If the credentials establish a connection and the inbox can be opened, the login is considered successful. This works so far. But now I do not see how to connect the authentication module to a security constraint. I mean, do I have to add every user that has an imap account to web.xml? Not really!? (You will find my web.xml and context.xml at the end of this message) Best Regards, Oliver Block ?xml version=1.0 encoding=UTF-8? Context antiJARLocking=true path=/JavaMailLoginServlet Realm className=org.apache.catalina.realm.JAASRealm appName=WebLogin userClassNames=com.oliverblock.principal.JavaMailPrincipal roleClassNames= debug=99 / Resource name=mail/Session auth=Container type=javax.mail.Session mail.smtp.host=localhost mail.imap.host=localhost factory=org.apache.naming.factory.MailSessionFactory / /Context ?xml version=1.0 encoding=UTF-8? web-app version=2.5 xmlns=http://java.sun.com/xml/ns/javaee; xmlns:xsi=http://www.w3.org/2001/XMLSchema-instance; xsi:schemaLocation=http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd; session-config session-timeout 30 /session-timeout /session-config welcome-file-list welcome-fileindex.jsp/welcome-file /welcome-file-list security-constraint display-nameUserConstraint/display-name web-resource-collection web-resource-nameUser/web-resource-name description/ url-pattern//url-pattern http-methodGET/http-method http-methodPOST/http-method http-methodHEAD/http-method http-methodPUT/http-method http-methodOPTIONS/http-method http-methodTRACE/http-method http-methodDELETE/http-method /web-resource-collection auth-constraint description/ role-nameUser/role-name /auth-constraint /security-constraint login-config auth-methodFORM/auth-method realm-name/ form-login-config form-login-page/login.html/form-login-page form-error-page/loginError.html/form-error-page /form-login-config /login-config security-role description/ role-nameUser/role-name /security-role /web-app - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Form-based authentication
Am Samstag, 20. Juni 2009 23:41:11 schrieb Caldarale, Charles R: From: Oliver Block [mailto:li...@oliver-block.eu] Subject: Form-based authentication But now I do not see how to connect the authentication module to a security constraint. I mean, do I have to add every user that has an imap account to web.xml? No, each user would normally have a set of roles with which they are associated, and it's the roles that are configured in web.xml. your login module can simply utilize any role name it likes for all users once authentication has occurred. Are the roles passed to the LoginModule? How? Best Regards, Oliver Block - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Access to configuration values
Hello everybody, I started to use Tomcat 6 for a mail web application - which is coded in php at the moment. I followed the JNDI-Resources HOW-TO to make use of JavaMail Sessions. As recommended under 3. Configure Tomcat's Resource Factory I copied the Resource tag to my context.xml in the web application project. Resource name=mail/Session auth=Container type=javax.mail.Session mail.smtp.host=localhost/ How cat I make use of mail.smtp.host in my code, in oder to avoid hard-coding the hostname? And, is it also ok to specify an imap store in the resource descriptor? If so, would it be 'mail.imap.store' ? Best Regards, Oliver Block - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Configure Tomcat 6 for php 5.2.2
Hi, please refer to the documentation: http://tomcat.apache.org/tomcat-6.0-doc/cgi-howto.html Don't forget to compile php as cgi. Regards, Oliver Am Montag, 21. Mai 2007 19:56 schrieb Pierluigi Fabbris: Hi, I've problem to configuring Tomcat 6. The problem is: I use saxon b, java and php how can I configure the last one? In Tomcat 5 and php 5.0 is possible. Is possible in Tomcat 6 and php 5.2.2, too? Hoping in a reply. Sincerally yours, Fabbris Pierluigi - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Startup Problem tomcat 4.1 on debian using kaffe
Hello everybody, my log reports: * Using CATALINA_BASE: /var/lib/tomcat4 Using CATALINA_HOME: /usr/share/tomcat4 Using CATALINA_TMPDIR: /var/lib/tomcat4/temp Using JAVA_HOME: /usr/lib/kaffe Using Security Manager Internal error: caught an unexpected exception. Please check your CLASSPATH and your installation. java/lang/ExceptionInInitializerError at java.lang.ClassLoader.getSystemClassLoader(ClassLoader.java:772) * my system: debian sarge (kernel 2.4) / kaffe 1.1.5 Did anybody of you solved that problem recently? TIA, Oliver - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Apache module?
Hi, I am not really familiar with tomcat. I understand tomcat as server for JSP and servlets. Or in other words, a server that is capable to host web applications. I also know, that tomcat colaborates with apache. Now I am wondering, if there is also an apache module which has the capabilities of tomcat. What about jakarta? I am not against tomcat of course. I'd just like to know if it's possible to save same admistrative tasks where appropriate. Best Regards, Oliver -- Leben ist mehr als schneller - weiter - höher http://www.nak-nrw.de/p_6_4.html - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]