tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Keyton Weissinger <>
Subject JAAS and Tomcat: Looking for Help
Date Tue, 10 Apr 2001 11:11:26 GMT

I am attempting to create a JAAS-based set of custom
tags. In doing so I have a checkPermission tag that
takes the class name for a PrivilegedAction which
attempts to read a file, foo.txt. I want only certain
authenticated users to be able to run my
PrivilegedAction. I have this 95% working, but the
last 5% seems impossible. Please help.

I have the jaas.policy file set to give my action the
appropriate permissions when the correct Principal is

I have tried setting the tomcat.policy file so that
the tag (and all of tomcat) has the permission to read
the file. 


The only way I can make the thing work is to "grant"
everything permission to read this file, but then I
get the PrivilegedAction firing off regardless of my
logged in principal.

The stack trace indicates that something in the trace
(left out for brevity) does not have foo.txt read.

What am I doing wrong? How can I have this action
fired ONLY when the proper Principal is authenticated?

Thank you in advance, ANYONE, who can shed some light
on this.

Keyton Weissinger

Do You Yahoo!?
Get email at your own domain with Yahoo! Mail.

View raw message