If you use the JNDI Realm, besides understanding how realm's work, it really steps up the complexity of getting a JNDI Server up and running also. My goal here is to have a simple webapp that I can just drop into a standard Tomcat installation.
I have the JAAS Hello World working in a servlet now. Its really crufty since the servlet prompts STDOUT and accepts the response on STDIN. Two issues I still need to work out are; making a complete server, currently I am debugging in the JBuilder Environment which gives you a non standard system classpath. Also the version of JAAS (SUN 1.0) I am using will only load a login configuration file from USER_HOME./.java.login.config. I would rather have it loaded from a resource stream so it can be packaged in my WAR file. I will post the results. Regards John G Andrew Conrad wrote:I'm not positive if you can make an NT Login, but TC 4.1.x has a > JAASRealm class which extends the Realm class. > > I didn't see any docs except the source. You probably want to get > familiar with Realms first, then tackle JAASRealm. As a side not, if > you are using Active Directory, you could use JNDIRealm and connect to > through LDAP to AD. > > If you get JAAS to work, post it so we all can learn. > > - Andrew > > > -----Original Message----- > > From: John Gentilin [mailto:[EMAIL PROTECTED]] > > Sent: Friday, July 26, 2002 5:15 PM > > To: Apache TomCat Project > > Subject: Help, Can I Use JAAS in the Tomcat 3.3 /4.0 enviorment > > > > > > In a Servlet design I am working on, I want to implement a > > security policy where the Servlet mechanisms knows if the > > user is allowed and what roles they are allowed to operate > > in, but falls back to the native O/S to validate the users > > password. The JAAS interface seems like the perfect mechanism > > using the NT Login mechanism along with a Login manager that > > I would implement. > > > > The question I have is, can JAAS be implemented in a Servlet > > environment. It appears that the classes need to be present > > at JVM boot time and not in the WEB-INF/lib directory (an > > issue with 1.3 JVM's) and an apparent platform issue with > > providing policy files. i.e. The need to load the > > .java2.policy from the user home directory which has little > > context in a servlet environment. It seems like I can get it > > to work but it would require a lot of tweaking with the > > System JVM and Tomcat installation and not something that is > > generically available at an ISP. > > > > Any suggestions would be greatly appreciated. > > > > Thanks in advance > > John G > > > > > > > > > > > > -- > > To unsubscribe, e-mail: > > <mailto:tomcat-user-> [EMAIL PROTECTED]> > > For > > additional commands, > > e-mail: <mailto:[EMAIL PROTECTED]> > > > > > > -- > To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> > For additional commands, e-mail: <mailto:[EMAIL PROTECTED]> -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
