How can we using Tomcat, map roles defined in a WebApp, to principals (user/groups or roles) defines in the realm of Tomcat?
Suppose we have a web app, where there's a role named Admin (The WebApp is implemented using that role, not caring about the runtime environment). Suppose we have two production system's using Tomcat with a realm that uses principals (user/groups or roles) of the native OS, and we have one system running in Unix, and other in Windows. In the Unix system we want to map the Admin role to the root user, and in the Windows System map the role Admin to the user Administrator. As I found in the documentation of Tomcat, I have no way to do this. I must define the role Admin in the realm that I am using. And another situation, where we have two web apps, with the same role, lets name it again Admin, and that we want to share the same realm of Tomcat for this two Web Applications, but we want to map the role Admin of the two different WebApps to different user/groups or roles in the Realm. Reading the servlet specification, the web containers must supply a mechanism to allow us to do this, as I found in the documentation of Tomcat, it does not allow us to do this, so Tomcat is not compliant with the Servlet specification. -- Bruno Antunes, Java Software Engineer email: mailto:[EMAIL PROTECTED] Phone: +351.21.7994200 Fax : +351.21.7994242 WhatEverSoft - Java Center Centro de Competencia Java Praca de Alvalade, 6 - Piso 4 1700-036 Lisboa - Portugal URL: http://www.whatevernet.com _____________________________________________________________________ INTERNET MAIL FOOTER A presente mensagem pode conter informa��o considerada confidencial. Se o receptor desta mensagem n�o for o destinat�rio indicado, fica expressamente proibido de copiar ou endere�ar a mensagem a terceiros. Em tal situa��o, o receptor dever� destruir a presente mensagem e por gentileza informar o emissor de tal facto. --------------------------------------------------------------------- Privileged or confidential information may be contained in this message. If you are not the addressee indicated in this message, you may not copy or deliver this message to anyone. In such case, you should destroy this message and kindly notify the sender by reply email. --------------------------------------------------------------------- -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
