tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "James A. Rome" <...@y12.doe.gov>
Subject isapi and security attributes
Date Wed, 21 Jun 2000 14:35:48 GMT
I need to make servlets to parse user certificates to determine access.
I am using IIS5 and Tomcat on Windows 2000. The problem is that the
security environment variables are not passed through the connector to
the servlet.

How do I get this fixed?

My 3 line perl code to dump the environment (not intercepted by Tomcat)
gives:
-------------------------------
INSTANCE_ID = 1
CERT_ISSUER = C=US, S=Administrator, L="Oak Ridge, TN", O=Materials
Microcharacterization Collaboratory, OU=Center for Information
Infrastructure Technology, CN=MMC CA
SERVER_PORT_SECURE = 1
HTTP_ACCEPT_LANGUAGE = en
HTTP_REFERER = [unknown origin]
PROCESSOR_IDENTIFIER = x86 Family 6 Model 8 Stepping 3, GenuineIntel
HTTP_USER_AGENT = Mozilla/4.73 [en] (WinNT; U)
HTTP_ACCEPT = image/gif, image/x-xbitmap, image/jpeg, image/pjpeg,
image/png, */*
REMOTE_HOST = 134.167.144.30
HTTP_HOST = jarhp.ciit.y12.doe.gov
GATEWAY_INTERFACE = CGI/1.1
TMP = e:\TEMP
OS2LIBPATH = C:\WINNT\system32\os2\dll;
SCRIPT_NAME = /scripts/dumpenv.pl
TEMP = e:\TEMP
USERPROFILE = C:\Documents and Settings\Administrator
SERVER_NAME = jarhp.ciit.y12.doe.gov
HTTP_ACCEPT_ENCODING = gzip
CERT_SUBJECT = C=BE, O=Materials Microcharacterization Collaboratory,
OU=NATO, S=Student, L="Brussels, BE",
OID.0.9.2342.19200300.100.1.1=JoeNato, CN=Joe Nato, E=jar@ispchannel.com
OS = Windows_NT
HTTP_ACCEPT_CHARSET = iso-8859-1,*,utf-8
CONTENT_LENGTH = 0
CERT_COOKIE = fcb8857c4f741e9068c875af69954beb
PATH =
C:\WINNT\system32;C:\WINNT;C:\WINNT\System32\Wbem;e:\jdk1.3\bin;e:\ResourceKit\;E:\Perl\bin\
PATHEXT = .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
COMPUTERNAME = JARHP
COMMONPROGRAMFILES = C:\Program Files\Common Files
TOMCAT_HOME = e:\tomcat
PROGRAMFILES = C:\Program Files
SYSTEMROOT = C:\WINNT
PROCESSOR_ARCHITECTURE = x86
LOCAL_ADDR = 134.167.144.35
PROCESSOR_REVISION = 0803
HTTPS_SERVER_SUBJECT = CN=jarhp.ciit.y12.doe.gov, OU=Center for
Information Infrastructure Technology, O=Materials Microcharacterization
Collaboratory, L="Oak Ridge, TN", S=Server, C=US
ALLUSERSPROFILE = C:\Documents and Settings\All Users
SERVER_PROTOCOL = HTTP/1.0
HTTP_CONNECTION = Keep-Alive
SYSTEMDRIVE = C:
COMSPEC = C:\WINNT\system32\cmd.exe
PATH_TRANSLATED = c:\inetpub\scripts\dumpenv.pl
CERT_FLAGS = 1
WINDIR = C:\WINNT
SERVER_SOFTWARE = Microsoft-IIS/5.0
PATH_INFO = /scripts/dumpenv.pl
REMOTE_ADDR = 134.167.144.30
HTTPS_SECRETKEYSIZE = 1024
PROCESSOR_LEVEL = 6
NUMBER_OF_PROCESSORS = 1
DISKEEPERICON = C:\Program Files\Executive
Software\DiskeeperWorkstation\
CERT_SERIALNUMBER = 0f
HTTPS = on
REQUEST_METHOD = GET
HTTPS_SERVER_ISSUER = C=US, S=Administrator, L="Oak Ridge, TN",
O=Materials Microcharacterization Collaboratory, OU=Center for
Information Infrastructure Technology, CN=MMC CA
JAVA_HOME = e:\jdk1.3
SERVER_PORT = 443
HTTPS_KEYSIZE = 128
--------------------------------------------
But snoop servlet gives:
---------------------------------------------
Snoop Servlet

Servlet init parameters:

Context init parameters:

Context attributes:
   javax.servlet.context.tempdir =
E:\Tomcat\work\localhost_8080%2Fexamples
   sun.servlet.workdir = E:\Tomcat\work\localhost_8080%2Fexamples

Request attributes:

Servlet Name: SnoopServlet
Protocol: HTTP/1.0
Scheme: http
Server Name: jarhp.ciit.y12.doe.gov
Server Port: 443
Server Info: Tomcat Web Server/3.1 (JSP 1.1; Servlet 2.2; Java 1.3.0;
Windows 2000 5.0 x86; java.vendor=Sun Microsystems Inc.)
Remote Addr: 134.167.144.30
Remote Host: 134.167.144.30
Character Encoding: null
Content Length: -1
Content Type: null
Locale: en
Default Response Buffer: 8192

Parameter names in this request:

Headers in this request:
   accept-language: en
   connection: Keep-Alive
   cookie: Jim=10/12/42; JSESSIONID=To1010mC7669155163086895At
   accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg,
image/png, */*
   accept-charset: iso-8859-1,*,utf-8
   host: jarhp.ciit.y12.doe.gov
   accept-encoding: gzip
   user-agent: Mozilla/4.73 [en] (WinNT; U)

Cookies in this request:
   Jim = 10/12/42
   JSESSIONID = To1010mC7669155163086895At

Request Is Secure: false
Auth Type: null
HTTP Method: GET
Remote User: null
Request URI: /examples/servlet/SnoopServlet
Context Path: /examples
Servlet Path: /servlet/SnoopServlet
Path Info: null
Path Trans: null
Query String: null

Requested Session Id: To1010mC7669155163086895At
Current Session Id: To1010mC7669155163086895At
Session Created Time: 961597269525
Session Last Accessed Time: 961597269525
Session Max Inactive Interval Seconds: 1800

Session values: 
   state = {Session Attributes=false, Request Parameters (single
style)=true, Header Data=true, Cook
-------------------------------
It does not even get the IsSecure flag correctly.



-- 
James A. Rome
Lockheed Martin Energy Systems
Center for Information Infrastructure Technology
1099 Commerce Park
MS 7615 Rm S22
Oak Ridge, TN 37830
Phone: (865) 574-1306
Fax:   (865) 574-7624

E-mail: jar@y12.doe.gov

Mime
View raw message