Hi there,
we adressing the following problem with tomcat (similar works with bea8.1)
using application-managed security
application is sending 401, see *.jsp
private static void login(HttpServletResponse response)
{
System.out.println("sending 401 for authenticate");
HttpServletResponse _tmp = response;
response.setStatus(401);
response.setHeader("WWW-Authenticate", "BASIC realm=\"Hey, first
identify\"");
}
There are no entries in any *.xml about the above realm, instead we are just
waiting for the input from the dialog box and the application should verifiy
this internally against LDAP.
But we are getting no dialog box asking for credentials, instead we get
immediately the default 401 error page in german
<html>
<head>
<title>Error Page 401 - Unauthorized</title>
</head>
<body>
<font face="Arial,Helvetica,sans-serif">
<center>
<h1>Sie sind aufgrund fehlender Authorisierung nicht berechtigt,
diese Seite aufzurufen!</h1>
</center>
</font>
</body>
</html>
So I would need a cookboot how to setup application-managed security, which
means, that tomcat must ignore the realm in the header and just give the
credentials to the application and wait what's happening.
Any help is highly appreciated, Thomas
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
