> From: Kevin Mullin [mailto:[EMAIL PROTECTED] > Subject: Tomcat User Authentication > > We have our own userid authentication process on our IBM > mainframe computers which uses something called RACF. Is > there a way to get Tomcat to use this processs to determine > proper userid and password authentication, in addition to > using its own tomcat-users.xml to determine what the > individual is capable of doing?
You probably don't want to use tomcat-users.xml at all; replace it completely with a JAAS-compliant interface to RACF. Take a look at: http://tomcat.apache.org/tomcat-5.5-doc/realm-howto.html Pay special attention to the JAAS Realm section, and study the JAAS documention on the Sun web site. We did it for our mainframes, using both our traditional security and our native Kerberos mechanisms. And no, we won't send you the code. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
