On 10/11/12 17:47, Russ Kepler wrote:
On Saturday, November 10, 2012 05:14:43 PM you wrote:
I thought it would helpful to let you know that I am very nearly ready
to submitting a lot of new unit tests for the FormAuthenticator class.
The new tests explore url path extensions to carry the
On Monday, November 19, 2012 12:33:26 PM Brian Burch wrote:
This issue was discussed at length on the users mailing list under this
topic: AuthenticatorBase setChangeSessionIdOnAuthentication without
cookies
http://mail-archives.apache.org/mod_mbox/tomcat-users/201209.mbox/%3C505EDA8
On 08/11/12 22:48, Russ Kepler wrote:
On Friday, November 09, 2012 01:02:55 AM Konstantin Kolinko wrote:
1. When and how do you obtain the value for your jsessionid? Beware
that the session id is changing when you do authentication. That is
done to prevent session fixation attacks.
The .jnlp
On 10/11/12 17:47, Russ Kepler wrote:
On Saturday, November 10, 2012 05:14:43 PM you wrote:
I thought it would helpful to let you know that I am very nearly ready
to submitting a lot of new unit tests for the FormAuthenticator class.
The new tests explore url path extensions to carry the
Using:
Linux main 3.2.0-32
Tomcat 7.0.32
Java version 1.7.0_09
(working through Eclipse Juno)
I've been assigned what should have been a pretty simple task, a jnlp launcher
following a login to the web server. I've implemented what seemed to me to be
the simplest solution - form based login
2012/11/8 Russ Kepler r...@kepler-eng.com:
Using:
Linux main 3.2.0-32
Tomcat 7.0.32
Java version 1.7.0_09
(working through Eclipse Juno)
I've been assigned what should have been a pretty simple task, a jnlp launcher
following a login to the web server. I've implemented what seemed to me
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Chetan,
Chetan Bob wrote:
| I want Tomcat authentication like company id / username / Password so it
| looks i should go for Form based authentication
Tomcat cannot do this at all, unfortunately. Securityfilter