Hi All,
Here's my problem:
I get 403 error when using my custom realm with LockOutRealm.
My implementation works with no problems on Tomcat 6.0.x. It also works
well if I configure my realm with no *LockOutRealm *present in my
configuration.
Configuration for both versions in server.xml nested in <Engine>:
<Realm className="org.apache.catalina.realm.LockOutRealm">
<Realm className="xxx.yyy.zzz.security.catalina.ConsoleRealm"
activeDirectoryGroupName="XXXGroup"
activeDirectoryDomain="YYYDomain" />
</Realm>
I have found is that AuthenticatorBase.java realm returned within
*invoke *method
from *this.context.getRealm()* (line 464 in version 7.0.25) in the
beginning it returns my ConsoleRealm. Later this method is invoked during
same login process again I get LockOutRealm returned. And when RealmBase.*
hasRole *executed it gives returns false which gives 403 http error.
For me it seems like configuration issue, but was unable to find answer in
the documentation.
Would anyone be able to help me?
Thanks,
Ed
