Re: Digested Passwords and the server/lib/catalina.jar file

Tue, 10 Sep 2002 14:29:01 -0700 

Ok I've not followed the entire thread, but many moons ago (using Tomcat
4.0.3) I did just this and I simply imported
org.apache.catalina.realm.JDBCRealm into my struts action and called
executed the following to get a hashed value for the user's new password.

       ud.setPassword(JDBCRealm.Digest(tf.getPassword(),"MD5"));

Where ud is a class that needs its password set in hashed format, and tf is
the web form that has the new password.

On my server catalina.jar is in $TOMCAT/server/lib which I think is the
usual home for it.  Not sure if this is what you wanted but there it is if
you need it.




----- Original Message -----
From: "Kevin HaleBoyes" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, September 10, 2002 12:39 PM
Subject: Re: Digested Passwords and the server/lib/catalina.jar file


> > From: [EMAIL PROTECTED]
> >
> >Moving a Tomcat server .jar file does not seem like a
> >comfortable option-- it is like moving system
> >libraries the OS depends on to a shareable area
> >because you do not like them where they currently are
> >located-- but if it works and you feel comfortable
> >with it then use it.  I hope this helps.
>
> I'm not sure that comfort is really a goal or option here.
> I'm simply following advice from the author of the Realm
> HOWTO (Craig?).  The specific method wasn't given nor was
> a recomendation made so I'm trying to figure out the best
> way to proceed.  I suppose there is a third option - extract
> the code from Catalina Realm and insert it into my application.
> I've done that on a previous contract but it didn't seem like
> the best solution either.
>
> Isn't this a very common problem that almost everyone on the
> list has faced?  Well, everyone that uses Realms with MD5 digested
> passwords.
>
>
> Anyway, thank you very much for your help.
> Kevin.
>
>
> __________________________________________________
> Do You Yahoo!?
> Yahoo! Finance - Get real-time stock quotes
> http://finance.yahoo.com
>
> --
> To unsubscribe, e-mail:
<mailto:[EMAIL PROTECTED]>
> For additional commands, e-mail:
<mailto:[EMAIL PROTECTED]>
>


--
To unsubscribe, e-mail:   <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>

Reply via email to