Hello all.

I'm running tomcat-4.1.42-LE-jdk14 on linux, using SSL with client
authentication, and a web app that has an additional form-based regular JDBC
Realm authentication with a username and a password. I would like to remove
this extra authentication step, and just use the client certificate with
some mapping to the actual user names. How should I map valid SSL client
certificates to regular realm-based authentication?
Currently I'm thinking whether it's possible to add my own Valve that would
do it (after the CertificatesValve has exposed the client certificate)
through the user database or JNDI or something, but don't know how to
proceed.

Thanks in advance for any insight.

Janne Ruuttunen


---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Reply via email to