Hello all. I'm running tomcat-4.1.42-LE-jdk14 on linux, using SSL with client authentication, and a web app that has an additional form-based regular JDBC Realm authentication with a username and a password. I would like to remove this extra authentication step, and just use the client certificate with some mapping to the actual user names. How should I map valid SSL client certificates to regular realm-based authentication? Currently I'm thinking whether it's possible to add my own Valve that would do it (after the CertificatesValve has exposed the client certificate) through the user database or JNDI or something, but don't know how to proceed.
Thanks in advance for any insight. Janne Ruuttunen --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
