tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From saur...@cysphere.com (Saurabh Shukla)
Subject RE: How to password-protect a servlet?
Date Tue, 19 Dec 2000 03:46:33 GMT

The only  that can happen is that your LocationMatch and the URL are not
matching. WHat's the URL you are sending the request ? You should also have
a look at DirectoryMatch.

Shuklix

I am using Apache 1.3.12 with Tomcat 3.1 and I wanted to
password protect a servlet running on Tomcat with the
Apache password mechanism.

In my httpd.conf file, I placed the following lines:
<LocationMatch /videosearch/servlet/AdminServlet>
AuthName "VideoSearch Admin"
AuthType Basic
AuthUserFile /usr/local/apache/conf/vidadmin.password
require valid-user
</LocationMatch>

But, it did not ask me for a password. But, if I change the location
match to:
<LocationMatch /test>
AuthName "VideoSearch Admin"
AuthType Basic
AuthUserFile /usr/local/apache/conf/vidadmin.password
require valid-user
</LocationMatch>

(The only thing I changed is the location to a directory called
test)

Everything works fine in this case.

Is Tomcat intercepting the URL before apache has a chance to
check if it needs to ask for a password?

Is there a way to use Apache's authentication for URLs that
point to Tomcat?

If not, does Tomcat have authentication capabilities?

Thanks,
	Neil.

--
Neil Aggarwal
JAMM Consulting, Inc. -- (972) 612-6056, http://www.JAMMConsulting.com
Custom Internet Development -- Java, JSP, servlets, databases




Mime
View raw message