Return-Path: 
 <user-return-14982-apmail-geronimo-user-archive=geronimo.apache.org@geronimo.apache.org>
Delivered-To: apmail-geronimo-user-archive@www.apache.org
Received: (qmail 893 invoked from network); 19 Jul 2010 10:48:21 -0000
Received: from unknown (HELO mail.apache.org) (140.211.11.3)
  by 140.211.11.9 with SMTP; 19 Jul 2010 10:48:21 -0000
Received: (qmail 2322 invoked by uid 500); 19 Jul 2010 10:48:21 -0000
Delivered-To: apmail-geronimo-user-archive@geronimo.apache.org
Received: (qmail 1851 invoked by uid 500); 19 Jul 2010 10:48:18 -0000
Mailing-List: contact user-help@geronimo.apache.org; run by ezmlm
Precedence: bulk
list-help: <mailto:user-help@geronimo.apache.org>
list-unsubscribe: <mailto:user-unsubscribe@geronimo.apache.org>
List-Post: <mailto:user@geronimo.apache.org>
Reply-To: user@geronimo.apache.org
List-Id: <user.geronimo.apache.org>
Delivered-To: mailing list user@geronimo.apache.org
Received: (qmail 1843 invoked by uid 99); 19 Jul 2010 10:48:17 -0000
Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230)
    by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 19 Jul 2010 10:48:17 +0000
X-ASF-Spam-Status: No, hits=2.2 required=10.0
	tests=HTML_MESSAGE,SPF_PASS
X-Spam-Check-By: apache.org
Received-SPF: pass (nike.apache.org: domain of kees.vanveen@kewill.com
 designates 87.213.107.180 as permitted sender)
Received: from [87.213.107.180] (HELO fiat.kewill.nl) (87.213.107.180)
    by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 19 Jul 2010 10:48:10 +0000
Received: from scania.interchain.nl (scania.kewill.nl [172.19.0.43])
	by fiat.kewill.nl (8.13.8/8.13.8) with ESMTP id o6JAlnni022718
	for <user@geronimo.apache.org>; Mon, 19 Jul 2010 12:47:49 +0200
Received: from [172.19.0.112] ([172.19.0.112]) by scania.interchain.nl with
 Microsoft SMTPSVC(6.0.3790.4675);
	 Mon, 19 Jul 2010 12:47:04 +0200
Message-ID: <4C442D55.1080609@kewill.com>
Date: Mon, 19 Jul 2010 12:47:49 +0200
From: Kees van Veen <kees.vanveen@kewill.com>
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US;
 rv:1.9.1.10) Gecko/20100527 Lightning/1.0b1 Thunderbird/3.0.5
MIME-Version: 1.0
To: user@geronimo.apache.org
Subject: Re: Dynamic realms
References: <4C404573.6030300@kewill.com>
	<93A1ACC3-61CB-4733-A223-9FB26986DD0A@yahoo.com>
	<4C43F0B3.2000904@kewill.com>
	<AANLkTikML3TTtmEX-160ynUBcnG8E9_2DMQMEEYcRfdy@mail.gmail.com>
	<4C4415D6.7070105@kewill.com>
 <AANLkTil-LFHHBtiobMnultg_eLWYCeppcD0Zo9sSssHA@mail.gmail.com>
In-Reply-To: <AANLkTil-LFHHBtiobMnultg_eLWYCeppcD0Zo9sSssHA@mail.gmail.com>
Content-Type: multipart/alternative;
 boundary="------------020706090306060509050908"
X-OriginalArrivalTime: 19 Jul 2010 10:47:05.0000 (UTC)
 FILETIME=[BA231A80:01CB272F]
X-Virus-Checked: Checked by ClamAV on apache.org

This is a multi-part message in MIME format.
--------------020706090306060509050908
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit

Thanks Ivan for the reply.

That's indeed exactly what I want to achieve: a deploy time security realm.

I have a maven project, but then still I have to build ears for all 
contexts used.

I was hoping to be able to overrule the <realm-name> in web.xml at 
deploy time.

But ... after fiddling around I found 2 ways to get it to work:

    * if I edit the deployed geronimo-web.xml  and web.xml (under the
      repository tree), and run deploy.sh restart app
    * using 'jar' on the ear extracting the war, extracting web.xml and
      geronimo-web.xml from the war, edit that and update the war, and
      then the ear, and deploy that one

Regards,
Kees

Ivan wrote:
> Not sure I understand your question correctly, if you mean that a 
> generic name like "security" is used in the geronimo-web.xml for the 
> realm name, and in the deployment time, you wish that the real 
> security realm will be changed with the current web context name, I am 
> afraid that it is impossible. might be other guys could have good ideas.
>
> If your project is built with maven, I think that you might use 
> placeholder in the xml file, maven plugin could help you to update 
> those values while assembling the web application.
>
> 2010/7/19 Kees van Veen <kees.vanveen@kewill.com 
> <mailto:kees.vanveen@kewill.com>>
>
>     Ivan wrote:
>>     In the geronimo-web.xml file, there is a xml entry named
>>     security-realm-name, which is used to specify which realm will be
>>     used for the web application, it should be the gbean name of the
>>     realm.
>     It is, in my case, but that lists the 'generic' realm for my
>     application. But deploy time I would like that realm to be
>     specific to my deployed context.
>
>>     Yes, there is also a xml entry named realm-name of the
>>     login-config, AFAIK, it will only used to show on the popping
>>     logon window of the browser.
>     Is that the realm-name of the web.xml you're referring to ? I've
>     set that to the 'generic' name as well. How can I get that to be
>     context specific ?
>
>
>
>>
>>     2010/7/19 Kees van Veen <kees.vanveen@kewill.com
>>     <mailto:kees.vanveen@kewill.com>>
>>
>>         I'm using basic authentication.
>>
>>         Regards,
>>         Kees
>>
>>
>>         David Jencks wrote:
>>
>>             Are you using basic, form, or some other kind of auth?
>>
>>             david jencks
>>
>>             On Jul 16, 2010, at 4:41 AM, Kees van Veen wrote:
>>
>>
>>                 Hi,
>>
>>                 How can I get a security realm name per deployed
>>                 context ? We deploy several versions/instances of our
>>                 software on the same Geronimo server, and want the
>>                 browser to remember username/password per url.
>>
>>                 When deploying a web app we create a security realm
>>                 name (in the plan) containing the context to which we
>>                 deploy, e.g. secure-context1, secure-context2. In the
>>                 Geronimo console I can see all the realms created, so
>>                 that seems to be fine.
>>
>>                 My web.xml (and geronimo-web.xml) contain 'secure' as
>>                 (generic) realm name, and that is what the browser
>>                 reports when I connect.
>>
>>                 Maybe a bigger question (for me) is: how does the
>>                 security definition in the plan.xml link back to the
>>                 (geronimo-)web.xml or how can I link my
>>                 web.xml/geronimo-web.xml to the realms available ?
>>
>>                 Thanks in advance.
>>
>>                 Regards,
>>                 Kees
>>
>>
>>
>>
>>
>>
>>     -- 
>>     Ivan
>
>
>
>
> -- 
> Ivan


--------------020706090306060509050908
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
  <meta content="text/html; charset=ISO-8859-1"
 http-equiv="Content-Type">
</head>
<body text="#000000" bgcolor="#ffffff">
Thanks Ivan for the reply.<br>
<br>
That's indeed exactly what I want to achieve: a deploy time security
realm.<br>
<br>
I have a maven project, but then still I have to build ears for all
contexts used.<br>
<br>
I was hoping to be able to overrule the &lt;realm-name&gt; in web.xml
at deploy time.<br>
<br>
But ... after fiddling around I found 2 ways to get it to work:<br>
<ul>
  <li>if I edit the deployed geronimo-web.xml&nbsp; and web.xml (under the
repository tree), and run deploy.sh restart app</li>
  <li>using 'jar' on the ear extracting the war, extracting web.xml and
geronimo-web.xml from the war, edit that and update the war, and then
the ear, and deploy that one</li>
</ul>
Regards,<br>
Kees<br>
<br>
Ivan wrote:
<blockquote
 cite="mid:AANLkTil-LFHHBtiobMnultg_eLWYCeppcD0Zo9sSssHA@mail.gmail.com"
 type="cite">Not sure I understand your question correctly, if you mean
that a generic name like "security" is used in the geronimo-web.xml for
the realm name, and in the deployment time, you wish that the real
security realm will be changed with the current web context name, I am
afraid that it is impossible. might be other guys could have good ideas.<br>
  <br>
If your project is built with maven, I think that you might use
placeholder in the xml file, maven plugin could help you to update
those values while assembling the web application.<br>
  <br>
  <div class="gmail_quote">2010/7/19 Kees van Veen <span dir="ltr">&lt;<a
 moz-do-not-send="true" href="mailto:kees.vanveen@kewill.com">kees.vanveen@kewill.com</a>&gt;</span><br>
  <blockquote class="gmail_quote"
 style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
    <div text="#000000" bgcolor="#ffffff">
    <div class="im">Ivan wrote:
    <blockquote type="cite">In the geronimo-web.xml file, there is a
xml entry named
security-realm-name, which is used to specify which realm will be used
for the web application, it should be the gbean name of the realm. <br>
    </blockquote>
    </div>
It is, in my case, but that lists the 'generic' realm for my
application. But deploy time I would like that realm to be specific to
my deployed context.
    <div class="im"><br>
    <blockquote type="cite">Yes, there is also a xml entry named
realm-name of the
login-config, AFAIK, it will only used to show on the popping logon
window of the browser.<br>
    </blockquote>
    </div>
Is that the realm-name of the web.xml you're referring to ? I've set
that to the 'generic' name as well. How can I get that to be context
specific ?
    <div class="im"><br>
    <br>
    <br>
    <blockquote type="cite"><br>
      <div class="gmail_quote">2010/7/19 Kees van Veen <span dir="ltr">&lt;<a
 moz-do-not-send="true" href="mailto:kees.vanveen@kewill.com"
 target="_blank">kees.vanveen@kewill.com</a>&gt;</span><br>
      <blockquote class="gmail_quote"
 style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">I'm
using
basic authentication.<br>
        <br>
Regards,<br>
        <font color="#888888">Kees</font>
        <div>
        <div><br>
        <br>
David Jencks wrote:<br>
        <blockquote class="gmail_quote"
 style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">Are
you using basic, form, or some other kind of auth?<br>
          <br>
david jencks<br>
          <br>
On Jul 16, 2010, at 4:41 AM, Kees van Veen wrote:<br>
          <br>
&nbsp; <br>
          <blockquote class="gmail_quote"
 style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">Hi,<br>
            <br>
How can I get a security realm name per deployed context ? We deploy
several versions/instances of our software on the same Geronimo server,
and want the browser to remember username/password per url.<br>
            <br>
When deploying a web app we create a security realm name (in the plan)
containing the context to which we deploy, e.g. secure-context1,
secure-context2. In the Geronimo console I can see all the realms
created, so that seems to be fine.<br>
            <br>
My web.xml (and geronimo-web.xml) contain 'secure' as (generic) realm
name, and that is what the browser reports when I connect.<br>
            <br>
Maybe a bigger question (for me) is: how does the security definition
in the plan.xml link back to the (geronimo-)web.xml or how can I link
my web.xml/geronimo-web.xml to the realms available ?<br>
            <br>
Thanks in advance.<br>
            <br>
Regards,<br>
Kees<br>
&nbsp; &nbsp; <br>
          </blockquote>
&nbsp; <br>
        </blockquote>
        <br>
        </div>
        </div>
      </blockquote>
      </div>
      <br>
      <br clear="all">
      <br>
-- <br>
Ivan<br>
    </blockquote>
    <br>
    </div>
    </div>
  </blockquote>
  </div>
  <br>
  <br clear="all">
  <br>
-- <br>
Ivan<br>
</blockquote>
<br>
</body>
</html>

--------------020706090306060509050908--