tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Leon Rosenberg <rosenberg.l...@googlemail.com>
Subject Re: 2 clear reasons
Date Sun, 22 Jan 2006 20:56:11 GMT
Yeah Jack,

it would be great if you would reply to the existing threads instead
of starting new ones with each message.

tia
leon

On 1/22/06, Mark Thomas <markt@apache.org> wrote:
> Two clear reasons for what?
>
> Mark
>
> Jack wrote:
> > 1. The Users of a web-app might be defined in several places such as
> > Database, or a file.
> >
> > 2. when we are not using ssl, but ask for client certificate.
> > We have to map certificats to roles. Although most certificates can be
> > mapped to a generic role.
> > A few certificates might be mapped to some specific roles.
> a) You can not use ssl and ask for client certificates. CLIENT-CERT
> requires the use of ssl.
> b) Realms map users to roles regardless of authentication mechanism
> (BASIC, DIGEST, FORM or CLIENT-CERT). There are a few gaps in the JNDI
> realm implementation and I am working on these at the moment as a
> result of bug 7831.
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: dev-help@tomcat.apache.org
>
>

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org


Mime
View raw message