When your form is submitted, if you are looking up the user from the context you can keep that info in a session var. Be careful not to use cookie sessions for that since you don't want to send the passwd back to the client unless using SSL. TagSupport only offers a way to read in the body of your tag and encapsulate code used by the page author. I am assuming your are talking about 2 access points in the same application context.
----- Original Message ----- From: "Hart, Justin" <[EMAIL PROTECTED]> To: "Tomcat Users List" <[EMAIL PROTECTED]> Sent: Friday, November 21, 2003 1:24 PM Subject: RE: Realm Username & Password from TagSupport I would like to authenticate my users with my database without prompting them a second time for a username and password. I have considered creating a subclass of JNDIRealm in order to do this, but I am resisting the urge to do this, figuring that there must be an easier way to implement mulit-tiered security with Tomcat. Unfortunately, somewhere, I need to be able to access the user's password in order to do this. So, what I'm wondering is if there is either a listener that I could implement, from which I could listen to users authenticating and use their username/password combos to login to my database, and then just associate this with their session ID, or if perhaps the user's password is accessible in some way, shape, or form from TagSupport. Justin -----Original Message----- From: Bryan LaPlante [mailto:[EMAIL PROTECTED] Sent: Friday, November 21, 2003 2:20 PM To: Tomcat Users List Subject: Re: Realm Username & Password from TagSupport Are you saying that you want to build a custom tag to do this. In any case here is the connection logic http://www.kickjava.com/1541.htm ----- Original Message ----- From: "Hart, Justin" <[EMAIL PROTECTED]> To: "Tomcat Users List (E-mail)" <[EMAIL PROTECTED]> Sent: Friday, November 21, 2003 12:27 PM Subject: Realm Username & Password from TagSupport I would like to use a users username/password to login to a database as that user, after they authenticate HOPEFULLY using BASIC authentication. Is there anyway to do this? Justin --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
