There is Security BeanBox approach in Java 1.2.
You have to create java.policy file in your servers
security directory. Now, You have to grant the permissions
in this file.
This one approach.
The another approach is to create the user/server
authentication certificate.
You might have to create .pks/.cer/.p12 files
for netscape authorization.
Your question is really good.
I found it challenging one.
Thanks
Paresh.
-----Original Message-----
From: Nic Ferrier
To: [EMAIL PROTECTED]
Sent: 1/14/00 1:08 AM
Subject: Re: Using HTTP user authentication
>>> Marty Halvorson <[EMAIL PROTECTED]> 13-Jan-00 8:47:39 PM >>>
>Maybe I'm just dense, but, having read the appropriate RFC's
>for HTTP and HTTP Authentication, having searched and
>been unable to find anything that explained how to use the
>built in HTTP Authentication, I still don't understand it.
>Can anybody help? A bit of sample code would be an added bonus.
I wrote an FAQ on this a while ago. You can get it at:
http://www.tapsellferrier.co.uk/Servlets/FAQ/authentication.html
It explains the process of protecting a resource with basic
authentication, I'm going to update it soon (when it goes into the
Servlet-Interest List FAQ) to include Digest Authentication.
>The part I really don't understand is how to tell the browser that a
user
>name and password are necessary to get to this resource. But, the
rest is
>pretty vague also.
Read the FAQ, come back to me if you still have a problem.
Nic Ferrier
________________________________________________________________________
___
To unsubscribe, send email to [EMAIL PROTECTED] and include in the
body
of the message "signoff SERVLET-INTEREST".
Archives: http://archives.java.sun.com/archives/servlet-interest.html
Resources: http://java.sun.com/products/servlet/external-resources.html
LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
