I've been able to implement "Remember Me" functionality using form-based authentication and cookies on Tomcat 4.1.18.
http://www.mail-archive.com/[EMAIL PROTECTED]/msg86636.html An example app (requires Ant 1.5.1 to build and J2EE_HOME to be set) is available at: http://raibledesigns.com/downloads/security-example-1.0.zip (10MB) HTH, Matt > -----Original Message----- > From: Will Hartung [mailto:[EMAIL PROTECTED] > Sent: Wednesday, March 05, 2003 3:06 PM > To: Tomcat Users List > Subject: Re: remember password HOW-TO? > > > > From: "David Reed" <[EMAIL PROTECTED]> > > Sent: Wednesday, March 05, 2003 1:46 PM > > Subject: remember password HOW-TO? > > > I am a relative newbie to servlet programming and I'm > > not really sure how to best solve a problem I am > > having. I am trying to implement a "save my password" > > feature on my web site. I am using Tomcat 4.1.18. I > > am using form-based authentication and I am using the > > Tomcat provided userdatabase to store my usernames, > > passwords and roles. > > If you're using container based authentication (which you > are), then you can > not implement a "remember me" facility within the Servlet API, there's > simply no mechanism for it exposed by the container. > > Of course, you're welcome to beat on Tomcat itself to provide this > non-portable functionality, but there's no way to do it > solely within your > web app. > > The only other solution is to implement all security using standard > mechanisms with Servlets et al, but that's a big wheel to re > carve out of > stone. > > Regards, > > Will Hartung > ([EMAIL PROTECTED]) > > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
