Hello Brandon, Authentication is a process in witch a user makes himself unmistakably known to the web application. Access Control is another process, in witch it's tested if an authenticated user (also called a principal), has rights to perform an action on a resource. You can configure default access control to principals in the startup repository image that is created inside the <data> tag in domain.xml, but the usual way to do it shall be in runtime, by using the client side API. Uncommenting the security directives on web.xml, just enables the usage of the default roles and users (principals), also configured in domain.xml, so JAAS isn't needed now. My advice: messing up with jaas isn't for the feint of heart, so I wouldn't sugest you to try it just yet ;)
Best regards, Miguel Figueiredo -----Original Message----- From: Brandon Dove [mailto:[EMAIL PROTECTED] Sent: quarta-feira, 18 de Maio de 2005 15:21 To: Jacob Lund Subject: Re: Re: Problems getting authentication working I've been following the online documentation but I guess I'm not clear on the difference between access control and authentication and where/how it should be applied. As I understand it access control determines the permissions that a user has for certain actions. These access controls are specified in Domain.xml correct? So how does authentication differ? Reading the Security section of the online docs it simply indicates that to enable authentication one should uncomment the indicated lines in web.xml but doesn't indicate any further JAAS setup is required. I have quite limited experience with this so any help/clarification is much appreciated. Cheers, Brandon ________________________________________________ Get your own "800" number Voicemail, fax, email, and a lot more http://www.ureach.com/reg/tag ---- On Wed, 18 May 2005, Jacob Lund ([EMAIL PROTECTED]) wrote: > What realm do you want to use? If you want to use users and groups defined > in slide the have a look at: > http://jakarta.apache.org/slide/howto-jaas.html > > /jacob > > ----- Original Message ----- > From: "Brandon Dove" <[EMAIL PROTECTED]> > To: <[email protected]> > Sent: Tuesday, May 17, 2005 11:21 PM > Subject: Problems getting authentication working > > > > I've enabled authentication (by uncommenting the lines indicated > > in web.xml) but subsequent attempts to log in fail using any > > login/password (including root/root). The logs indicate the > > following error: > > > > SEVERE: Unexpected error > > java.lang.SecurityException: Unable to locate a login > > configuration > > > > > > Can anyone offer some help? I'm using Slide 2.1 with Tomcat > > 5.5.4. > > > > Cheers, > > > > Brandon > > > > ________________________________________________ > > Get your own "800" number > > Voicemail, fax, email, and a lot more > > http://www.ureach.com/reg/tag > > > > --------------------------------------------------------------------- > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > For additional commands, e-mail: [EMAIL PROTECTED] > > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
