tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject DO NOT REPLY [Bug 49785] New: Enabling TLS for JNDIRealm
Date Thu, 19 Aug 2010 17:04:12 GMT

           Summary: Enabling TLS for JNDIRealm
           Product: Tomcat 7
           Version: trunk
          Platform: All
        OS/Version: All
            Status: NEW
          Severity: enhancement
          Priority: P2
         Component: Catalina

Created an attachment (id=25916)
 --> (
InitialContextFactory which produces TLS enabled LdapContext instances

To enable TLS for LDAP inside JNDIRealm one has to either patch JNDIRealm
directly and introduce another state variable to hold TLS-state - and thus make
introduction of pooling harder, or use a factory which produces TLS enabled
DirContext instances.

Such a factory is attached. It can be configured by specifying a contextFactory
in JNDIRealm config:

I think it would be a good idea to add a parameter startTLS to JNDIRealm, which
would automatically use the above TLS-ContextFactory. If wanted, I could supply
a patch.

(the patch is against tomcat 6.0.x trunk, but I think it will apply fine to
trunk too)

Configure bugmail:
------- You are receiving this mail because: -------
You are the assignee for the bug.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message