tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 5647] - AJP13 connector will not pass authentication requests
Date Tue, 26 Mar 2002 07:31:16 GMT
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG 
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://nagoya.apache.org/bugzilla/show_bug.cgi?id=5647>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND 
INSERTED IN THE BUG DATABASE.

http://nagoya.apache.org/bugzilla/show_bug.cgi?id=5647

AJP13 connector will not pass authentication requests





------- Additional Comments From marcin_ol@poczta.onet.pl  2002-03-26 07:31 -------
That, what I've said on 2002-03-04, is a bit wrong: the AJP connector DLL works 
correctly (I've looking at the wrong branch) - as Microsoft said in MSDN, when 
IIS is queried about REMOTE_USER, it returns empty string when user is 
anonymous (and in the correct connector branch, all variables are evaluated by 
querying IIS, not by examining request directly).
So, there are two possible solutions: 
1). Don't call setUserPrincipal(..) in AJP13Request.setAJPRequest
OR
2). In FormAuthenticator, check not only for NULL in getUserPrincipal(), but 
also for empty String.
The bug was corrected in CVS version 1.7 of AJP13Request.java only - solution 1 
was applied, and then removed in version 1.8.

--
To unsubscribe, e-mail:   <mailto:tomcat-dev-unsubscribe@jakarta.apache.org>
For additional commands, e-mail: <mailto:tomcat-dev-help@jakarta.apache.org>


Mime
View raw message