On Wed, 31 Jul 2002, Meder Bakirov wrote:
> Date: Wed, 31 Jul 2002 16:25:57 +0600
> From: Meder Bakirov <[EMAIL PROTECTED]>
> Reply-To: Tomcat Users List <[EMAIL PROTECTED]>,
> [EMAIL PROTECTED]
> To: [EMAIL PROTECTED]
> Subject: Realm reuse howto!
>
> Hello mighty all!
>
> I just wanted to ask: is it possible to reuse realms in my own jsps or
> servlets?
>
> I have configured form-based authentication, using JDBCRealm. I have a
> login.jsp with necessary fields. After an authorization, can I reuse (e.g.
> call them using getParameter() or by another way) j_username and j_password
> fields in my own index.jsp (or other jsp files)?
>
> Here is, what I want to do:
>
> I have a SQL table users with columns (username, password, id). JDBCRealm
> checks user in this table. So, when authorization is succesfull, I want to
> get these values(username, password) and use them in my query (SELECT id FROM
> users WHERE username='<j_username_value>' AND password='<j_password>') and
> show some statistics info for that user, without reasking him to identify
> himself again.
>
> Thank you very much!
>
Once a user has been authenticated (by requesting a protected URL), you
can call request.getRemoteUser() to get the username. The password isn't
visible, however -- but you really shouldn't be building queries based on
it anyway.
> Rgrds.
Craig
--
To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
