This seems to come up (in various variations) again and again. And, I also asked... "should one simply subclass xxxRealm ... specifically the java.security.Principal authenticate(java.lang.String username, java.lang.String credentials) method?" And, then ... maybe ... extending java.security.Principal with a getPassword() method. And returning that from authenticate().
Though... as I type this in... it's making me queasy! Please... Tomcat gurus... what is the answer? gary... > From: Justin Wesbrooks <[EMAIL PROTECTED]> > Reply-To: "Tomcat Users List" <[EMAIL PROTECTED]> > Date: Fri, 21 Nov 2003 13:32:47 -0600 > To: [EMAIL PROTECTED] > Subject: Intercepting login information > > > > > > Is there any way to intercept login information when using basic or form > based security and letting the container manage security? > > For example, after someone logs in, I would like to write an audit record > to the database that contains that information so I can count number of > logins etc. > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]