RE: Security constraint/login form

created or yest to my last question about the values being what I want? -Original Message- From: Marc Farrow [mailto:[EMAIL PROTECTED] Sent: Thursday, August 17, 2006 3:38 PM To: Tomcat Users List Subject: Re: Security constraint/login form Quick answer is yes. On 8/17/06, Propes

RE: Security constraint/login form

never mind...sorry, I did see it in the web.xml file under the role-name element. Sorry about that! -Original Message- From: Propes, Barry L Sent: Monday, August 21, 2006 10:43 AM To: Tomcat Users List Subject: RE: Security constraint/login form Ok, I'm finding that the names

Re: Security constraint/login form

upon restart? -Original Message- From: Marc Farrow [mailto:[EMAIL PROTECTED] Sent: Thursday, August 17, 2006 4:03 PM To: Tomcat Users List Subject: Re: Security constraint/login form The names are irrelevant. They just have to match between implementation and setup. On 8/17/06, Propes

RE: Security constraint/login form

third col to the users table as well? Or is that immaterial? -Original Message- From: David Smith [mailto:[EMAIL PROTECTED] Sent: Monday, August 21, 2006 10:51 AM To: Tomcat Users List Subject: Re: Security constraint/login form Could you post some relevant sections of your webapp? I'm

Re: Security constraint/login form

:51 AM Subject: Re: Security constraint/login form Could you post some relevant sections of your webapp? I'm thinking the security constraint section of your web.xml, a representative segment of your user database table, and the logs where a request is made to login. Something just seems

Re: Security constraint/login form

] Sent: Monday, August 21, 2006 10:51 AM To: Tomcat Users List Subject: Re: Security constraint/login form Could you post some relevant sections of your webapp? I'm thinking the security constraint section of your web.xml, a representative segment of your user database table, and the logs where

RE: Security constraint/login form

ok, thanks, David! -Original Message- From: David Smith [mailto:[EMAIL PROTECTED] Sent: Monday, August 21, 2006 11:48 AM To: Tomcat Users List Subject: Re: Security constraint/login form Looking at the source for org.apache.catalina.JDBCRealm, the queries on the database are confined

Re: Security constraint/login form

was still showing the old value, and could have been causing some of the problems. -Original Message- From: Marc Farrow [mailto:[EMAIL PROTECTED] Sent: Thursday, August 17, 2006 4:03 PM To: Tomcat Users List Subject: Re: Security constraint/login form The names are irrelevant

Re: Security constraint/login form

.? -Original Message- From: Marc Farrow [mailto:[EMAIL PROTECTED] Sent: Thursday, August 17, 2006 2:11 PM To: Tomcat Users List Subject: Re: Security constraint/login form Are you talking about the tomcat-users.xml file and the roles defined in there? The security-contraints are pretty flexible and you

RE: Security constraint/login form

: Re: Security constraint/login form Over an hour? Not even ODBC has that kind of latency. Could you be looking at a caching issue? --David Propes, Barry L wrote: ok, thanks..I think there's a fair amount of latency between my database query info and what's actually updated

RE: Security constraint/login form

PROTECTED] Sent: Friday, August 18, 2006 6:26 AM To: Tomcat Users List Subject: Re: Security constraint/login form Over an hour? Not even ODBC has that kind of latency. Could you be looking at a caching issue? --David Propes, Barry L wrote: ok, thanks..I think there's a fair amount of latency

Re: Security constraint/login form

or admin? -Original Message- From: David Smith [mailto:[EMAIL PROTECTED] Sent: Friday, August 18, 2006 6:26 AM To: Tomcat Users List Subject: Re: Security constraint/login form Over an hour? Not even ODBC has that kind of latency. Could you be looking at a caching issue? --David Propes

RE: Security constraint/login form

AM To: Tomcat Users List Subject: Re: Security constraint/login form Valid roles are whatever are defined to be valid. The specific name does not matter. But if you are using a Database for validation, then the roles are pulled from the database column that you have associated as the roles

Security constraint/login form

I realize that in Tomcat (I'm using 4.1.3 and 4.0.1 by the way -- a version on a prod. server and one ony my desktop) that you can create the simple table titled users and configure it in the server.xml file and then likewise configure the web.xml file's security constraint properties. My

RE: Security constraint/login form

for the form login security constraint to work. -Original Message- From: Propes, Barry L Sent: Thursday, August 17, 2006 11:13 AM To: Tomcat Users List Subject: Security constraint/login form I realize that in Tomcat (I'm using 4.1.3 and 4.0.1 by the way -- a version on a prod. server

Re: Security constraint/login form

in addition to the user_name and user_roles table that Tomcat requires for the form login security constraint to work. -Original Message- From: Propes, Barry L Sent: Thursday, August 17, 2006 11:13 AM To: Tomcat Users List Subject: Security constraint/login form I realize that in Tomcat

RE: Security constraint/login form

ok, well that certainly helps and gives very good direction! Thank you, David! -Original Message- From: David Smith [mailto:[EMAIL PROTECTED] Sent: Thursday, August 17, 2006 2:02 PM To: Tomcat Users List Subject: Re: Security constraint/login form Getting the remote user would

Re: Security constraint/login form

, 2006 11:13 AM To: Tomcat Users List Subject: Security constraint/login form I realize that in Tomcat (I'm using 4.1.3 and 4.0.1 by the way -- a version on a prod. server and one ony my desktop) that you can create the simple table titled users and configure it in the server.xml file and then likewise

RE: Security constraint/login form

the values I need to return the proper info per each user's roles and credentials. Thanks, both of you guys! -Original Message- From: Marc Farrow [mailto:[EMAIL PROTECTED] Sent: Thursday, August 17, 2006 2:11 PM To: Tomcat Users List Subject: Re: Security constraint/login form Are you

RE: Security constraint/login form

a column called role_name, but with a value such as RISK, author, legaldept, etc.? -Original Message- From: Marc Farrow [mailto:[EMAIL PROTECTED] Sent: Thursday, August 17, 2006 2:11 PM To: Tomcat Users List Subject: Re: Security constraint/login form Are you talking about the tomcat-users.xml

Re: Security constraint/login form

: Security constraint/login form Are you talking about the tomcat-users.xml file and the roles defined in there? The security-contraints are pretty flexible and you can use any number of ways to define your realms. If you look at the web.xml for the manager application (that is shipped with Tomcat

RE: Security constraint/login form

: Thursday, August 17, 2006 3:38 PM To: Tomcat Users List Subject: Re: Security constraint/login form Quick answer is yes. On 8/17/06, Propes, Barry L [EMAIL PROTECTED] wrote: I wonder though...do the role_names have to be service or admin or something like that? Can they be anything I declare

Re: Security constraint/login form

or yest to my last question about the values being what I want? -Original Message- From: Marc Farrow [mailto:[EMAIL PROTECTED] Sent: Thursday, August 17, 2006 3:38 PM To: Tomcat Users List Subject: Re: Security constraint/login form Quick answer is yes. On 8/17/06, Propes, Barry L [EMAIL

RE: Security constraint/login form

[mailto:[EMAIL PROTECTED] Sent: Thursday, August 17, 2006 4:03 PM To: Tomcat Users List Subject: Re: Security constraint/login form The names are irrelevant. They just have to match between implementation and setup. On 8/17/06, Propes, Barry L [EMAIL PROTECTED] wrote: quick answer is yes