Do not need to exchange classe in the jar, call it XYZRealm put it into
%TOMCAT_HOME%/classes and change the requestinterceptor line in
server.xml from org.apache.tomcat.request.JDBCRealm to your XYZRealm ,
and that's all folks.
FYI.: Next Tomcat 3.X already has Digested passwrods inside ( and Tomcat
4.0 too ).
Saludos ,
Ignacio J. Ortega
> -----Mensaje original-----
> De: Dario Novakovic [mailto:[EMAIL PROTECTED]]
> Enviado el: lunes 22 de enero de 2001 0:41
> Para: tomcat-user
> Asunto: JDBC realm authentication
>
>
> i want to use database for (form based) user authentication
> but problem is
> that i have crypted user passwords and JDBCRealm.class expects plain
> passwords. Would it be enough if i change JDBCRealm class to encrypt
> password typed in the form before it checks it against password in the
> database? i would, then, compile that class and swap it with
> the same class
> in the jar file. is it any good or am i beeing stupid?
>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, email: [EMAIL PROTECTED]
>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, email: [EMAIL PROTECTED]
