tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 45155] New: Authentication with windows XP Mini-redirector
Date Sat, 07 Jun 2008 00:38:07 GMT
https://issues.apache.org/bugzilla/show_bug.cgi?id=45155

           Summary: Authentication with windows XP Mini-redirector
           Product: Tomcat 6
           Version: unspecified
          Platform: All
        OS/Version: Windows XP
            Status: NEW
          Severity: normal
          Priority: P2
         Component: Catalina
        AssignedTo: tomcat-dev@jakarta.apache.org
        ReportedBy: enjoyaol@gmail.Com


Hello,

There is a problem in Tomcat (all versions as far as i have tested, up to the
4.X versions) regarding the realm-based authentication on tomcat's side, with
Windows XP clients.

After several weeks trying to find how to solve this problem, here it is on the
bug list..

Basically the problem is that the authentication provided by Tomcat is not
working with the Windows XP clients using the windows xp 'Webclient' service as
known as Webdav Mini-redirector.

I won't explain in details how windows XP works with this Webclient service but
here are the two things that are important:

1) In your 'Network Places' folder, try to add a folder with an HTTP url
pointing to your favorite webdav servlet protected with BASIC authentication.
Configure your tomcat server to provide this servlet on something like :
http://host/davservlet
It won't work at all because windows tries to authenticate with NTLM. The thing
is that windows can't recognize the realm you are using and its type (BASIC).
Windows thinks it's NTLM and provides your username like DOMAIN\username
(which, obviously, is not your login at all...).

2) Configure your tomcat to provide SSL on port 443. Do the same as before :
add your network folder httpS://host/davservlet : it works because another DLL
file (the good one ! from microsoft office) is used to connect to it (because
HTTPS is not supported by the real mini-redirector).

3) Configure your tomcat to provide HTTP (not HTTPS) acccess on port XXX other
than 80. Do the same as before : it works again ! Because this is the same good
DLL which is used.


You'll say : change the port 80 to something else ! Or juste provide HTTPS
which is even better ! I reply : yep, but what if i want to map my webdav
access to a network drive ? Windows can handle that.... but not if your port is
other than 80, and not if it's HTTPS !! So no solution so far ;((((

This is a well known bug of Tomcat since many versions. Please don't put this
bug report INVALID or DECLINED as it affects many people.. I alreay saw this
bug being INVALIDATED by a developper around here juste because it worked
properly for him. Please try these things about the ports and the HTTPS things
and you'll see by yourself that there is a problem. And as you can't change the
windows DLL, perhaps on Tomcat's side, something can be done ?


Thank you !

Henri


-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org


Mime
View raw message