Return-Path: Delivered-To: apmail-tomcat-dev-archive@www.apache.org Received: (qmail 3660 invoked from network); 23 Jan 2006 05:28:19 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur.apache.org with SMTP; 23 Jan 2006 05:28:19 -0000 Received: (qmail 8242 invoked by uid 500); 23 Jan 2006 05:28:18 -0000 Delivered-To: apmail-tomcat-dev-archive@tomcat.apache.org Received: (qmail 7211 invoked by uid 500); 23 Jan 2006 05:28:15 -0000 Mailing-List: contact dev-help@tomcat.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Tomcat Developers List" Delivered-To: mailing list dev@tomcat.apache.org Received: (qmail 7200 invoked by uid 99); 23 Jan 2006 05:28:14 -0000 Received: from asf.osuosl.org (HELO asf.osuosl.org) (140.211.166.49) by apache.org (qpsmtpd/0.29) with ESMTP; Sun, 22 Jan 2006 21:28:14 -0800 X-ASF-Spam-Status: No, hits=0.5 required=10.0 tests=FORGED_HOTMAIL_RCVD2,SPF_HELO_PASS,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (asf.osuosl.org: domain of jak-tomcat-dev@m.gmane.org designates 80.91.229.2 as permitted sender) Received: from [80.91.229.2] (HELO ciao.gmane.org) (80.91.229.2) by apache.org (qpsmtpd/0.29) with ESMTP; Sun, 22 Jan 2006 21:28:13 -0800 Received: from list by ciao.gmane.org with local (Exim 4.43) id 1F0uF2-0000in-EF for dev@tomcat.apache.org; Mon, 23 Jan 2006 06:27:48 +0100 Received: from kitchener-hse-ppp3572328.sympatico.ca ([65.93.130.81]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Mon, 23 Jan 2006 06:27:48 +0100 Received: from jackzhp by kitchener-hse-ppp3572328.sympatico.ca with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Mon, 23 Jan 2006 06:27:48 +0100 X-Injected-Via-Gmane: http://gmane.org/ To: dev@tomcat.apache.org From: "Jack" Subject: ?realms in different level(Engine,Host,Webapp)? Date: Mon, 23 Jan 2006 00:27:08 -0500 Lines: 40 Message-ID: References: X-Complaints-To: usenet@sea.gmane.org X-Gmane-NNTP-Posting-Host: kitchener-hse-ppp3572328.sympatico.ca X-Newsreader: Microsoft Outlook Express 6.00.3790.1830 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.1830 X-RFC2646: Format=Flowed; Original Sender: news X-Virus-Checked: Checked by ClamAV on apache.org X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N "Terry Zhou" wrote in message news:daa09eb00601200137k6e9fa75cr@mail.gmail.com... >Tomcat does have a realm in different level(Engine,Host,Webapp) > for security. >Check http://tomcat.apache.org/tomcat-5.5-doc/realm-howto.html Is there anybody using this? and it works? I guess the developers just want to go that way. I said it doesn't work in replying him, nobody give more information. When i use this to replace the UserDatabaserealm, everything works well. when i moved it to a web-app's context.xml, and the userdatabaserealm enabled on engine level, the one configued in context.xml doesn't work. Furthermore, users defined in the engine level is available in the web-app. Terry mentioned for security reason, i think that users defined in the engine level should not be available to the web-app. Yes, the users defined in engine level should not be available to web-apps. users defined in host level can be available to all its web-apps. in a specific web-app's context.xml doesn't work, either. Thank you for reading this. jackzhp@hotmail.com --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org For additional commands, e-mail: dev-help@tomcat.apache.org