On Thu, 10 Jan 2002 [EMAIL PROTECTED] wrote:
> Date: Thu, 10 Jan 2002 15:35:51 -0600
> From: [EMAIL PROTECTED]
> Reply-To: Tomcat Users List <[EMAIL PROTECTED]>
> To: [EMAIL PROTECTED]
> Subject: RE: Question about login backdoor
>
>
> Does tomcat allow multiple realms? If the first realm fails to
> authenticate, the next one will be used.
>
In Tomcat 4, you can indeed have multiple Realms. They are arranged
hierarchically, depending on where you put the <Realm> element. This can
be nested inside the <Engine>, <Host>, or <Context>.
The rule Tomcat 4 uses to find the right realm is:
* Use the <Realm> nested inside my <Context>, if any; else
* Use the <Realm> nested inside my <Host>, if any; else
* Use the <Realm> nested inside my <Engine>.
You will note in the default server.xml file, the <Realm> is nested inside
the <Engine>. This is what makes it global to all web applications across
all virtual hosts. If you want a different one for a particular host or
context, just nest your own <Realm> implementaiton inside.
> If that is true, probably, I can implement a customized realm as the
> backdoor.
>
Yah, if you want roles support as well, this is probably your best bet.
> -Jerry Fang
>
Craig
--
To unsubscribe: <mailto:[EMAIL PROTECTED]>
For additional commands: <mailto:[EMAIL PROTECTED]>
Troubles with the list: <mailto:[EMAIL PROTECTED]>
