tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Andrew Grosser" <diop...@hotmail.com>
Subject Re: How to start the j_security_check servlet if using SSLAuthenticator
Date Tue, 23 Jul 2002 04:39:09 GMT

It should be possible to include this "magic" url in the SSLAuthenticator 
class too, no?

thanks

>From: "Craig R. McClanahan" <craigmcc@apache.org>
>Reply-To: "Tomcat Developers List" <tomcat-dev@jakarta.apache.org>
>To: Tomcat Developers List <tomcat-dev@jakarta.apache.org>
>CC: dioptre@hotmail.com
>Subject: Re: How to start the j_security_check servlet if using 
>SSLAuthenticator
>Date: Mon, 22 Jul 2002 21:25:30 -0700 (PDT)
>MIME-Version: 1.0
>Received: from [192.18.49.131] by hotmail.com (3.2) with ESMTP id 
>MHotMailBF062625008F400431D9C01231839BEF0; Mon, 22 Jul 2002 21:27:17 -0700
>Received: (qmail 4771 invoked by uid 97); 23 Jul 2002 04:26:00 -0000
>Received: (qmail 4759 invoked by uid 98); 23 Jul 2002 04:25:59 -0000
>>From tomcat-dev-return-15135-dioptre Mon, 22 Jul 2002 21:27:35 -0700
>Mailing-List: contact tomcat-dev-help@jakarta.apache.org; run by ezmlm
>Precedence: bulk
>List-Unsubscribe: <mailto:tomcat-dev-unsubscribe@jakarta.apache.org>
>List-Subscribe: <mailto:tomcat-dev-subscribe@jakarta.apache.org>
>List-Help: <mailto:tomcat-dev-help@jakarta.apache.org>
>List-Post: <mailto:tomcat-dev@jakarta.apache.org>
>List-Id: "Tomcat Developers List" <tomcat-dev.jakarta.apache.org>
>Delivered-To: mailing list tomcat-dev@jakarta.apache.org
>X-Antivirus: nagoya (v4198 created Apr 24 2002)
>In-Reply-To: <000801c231ff$96d41c60$0100a8c0@ga>
>Message-ID: <20020722212216.G18916-100000@icarus.apache.org>
>X-Spam-Rating: localhost 1.6.2 0/1000/N
>X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N
>
>Right now, the choice between FORM and CLIENT-CERT is an either-or choice
>in the servlet spec -- you cannot choose both on the same web application.
>
>The "j_security_check" URL is not actually mapped to a servlet -- it is a
>"magic" URL that is only enabled (by FormAuthenticator) when the form
>login page has been displayed.  None of the rest of Tomcat has a clue what
>j_security_check is for.
>
>Craig
>
>
>
>On Tue, 23 Jul 2002, Andrew Grosser wrote:
>
> > Date: Tue, 23 Jul 2002 13:15:33 +0900
> > From: Andrew Grosser <dioptre@hotmail.com>
> > Reply-To: Tomcat Developers List <tomcat-dev@jakarta.apache.org>
> > To: tomcat-dev@jakarta.apache.org
> > Subject: How to start the j_security_check servlet if using
> >     SSLAuthenticator
> >
> > Hello,
> > I have been looking at extending the SSLAuthenticator class to accept
> > Certificates AND Form type logins using a JDBC connector.
> > This would have seemed relatively simple - but I have not been able to
> > instantiate the j_security_check servlet for the SSLAuthenticator class
> > (as it seems to only work for FormAuthenticator).
> > I have not been able to find the reference for where j_security_check is
> > called by the Context config/manager and how it recognizes whether the
> > authentication used is of type FORM/CLIENT-CERT
> >
> > Perhaps it has something to do with the difference between
> >
> > ContextConfig[]: Configured an authenticator for method FORM
> >
> >  And
> >
> > ContextConfig[]: Configured an authenticator for method CLIENT-CERT
> >
> > But I cant seem to find it anywhere.
> >
> > Please help
> >
> > Cheers
> >
> >
>
>
>--
>To unsubscribe, e-mail:   
><mailto:tomcat-dev-unsubscribe@jakarta.apache.org>
>For additional commands, e-mail: 
><mailto:tomcat-dev-help@jakarta.apache.org>
>




_________________________________________________________________
Send and receive Hotmail on your mobile device: http://mobile.msn.com


--
To unsubscribe, e-mail:   <mailto:tomcat-dev-unsubscribe@jakarta.apache.org>
For additional commands, e-mail: <mailto:tomcat-dev-help@jakarta.apache.org>


Mime
View raw message