tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Reynir Hübner <rey...@hugsmidjan.is>
Subject RE: Design question
Date Mon, 19 Aug 2002 17:55:56 GMT
I think, if you want to have a real domain authentication (automatically authenticating users)
you will have to use NTLM. 
Btw, one thing I forgot to mention before, NTLM is I think only supported in Internet Explorer
(verisons 5.0 + ). 

But in my earlyer respond to this matter, the problem is you can not authenticate against
remote server (from a server) with out getting the credidentals from the user. It might be
possible to forward something, like an Authenticated flag or the String resulting from the
handshake, I dont know if it will work.

I am not sure you can get the username/password/domain combo all out of the ADSI (can you
get passwords ?).


-reynir.net

> -----Original Message-----
> From: Durham David Cntr 805CSS/SCBE 
> [mailto:David.Durham1@scott.af.mil]
> Sent: 19. ágúst 2002 17:52
> To: Tomcat Users List
> Subject: RE: Design question
> 
> 
> Another option might be to use LDAP to query a windows active 
> directory, if you're using that.  This would provide a way 
> for you to deal with a users permissions within your app.  I 
> haven't done this, and don't ever want to, but I think it's doable.
> 
> -Dave
> 
> > -----Original Message-----
> > From: Reynir Hübner [mailto:reynir@hugsmidjan.is]
> > Sent: Monday, August 19, 2002 12:29 PM
> > To: Tomcat Users List
> > Subject: RE: Design question
> > 
> > 
> > Hi, 
> > 
> >    For this problem I would say it would be best to use IIS 
> > and Tomcat combo Because IIS can authenticate users by using 
> > NTLM authentication scheme. This means that users with in 
> > your domain can be automatically authenticated (by using 
> > Windows Intergrated Authenticaton in IIS). 
> > 
> >    There are several ways to upload files to a server, one is 
> > by using MultiPart Requests (Method POST). All you need is a 
> > MultiPartRequestParser and then you can parse the files from 
> > the  request and do what ever you like with em, such  as 
> > upload the files to a remote server.  If you need to use NTLM 
> > authorisation for this It can get little bit complicated. In 
> > theory you should be able to do it anyway, but not with  out 
> > the user giving out his username/password/domain combination, 
> > to authenticate against the remote server. Then for step 2 
> > (downloading files from a remote server authenticated with 
> > NTLM) you could write a servlet that acts similar to a proxy. 
> > 
> >    This could be achived by using the 
> >     http://www.innovation.ch/java/HTTPClient/
> >    along with 
> >     http://www.innovation.ch/java/ntlm.html
> >    and last but not least 
> >     http://www.luigidragone.com/networking/ntlm.html  
> > 
> > hope it helps
> > -reynir@reynir.net
> > 
> > 
> >  
> >    
> > 
> > 
> > 
> > 
> > > -----Original Message-----
> > > From: Raju Lokhande [mailto:RLokhande@ne.health.net]
> > > Sent: 19. ágúst 2002 17:01
> > > To: <Tomcat Users List
> > > Subject: Design question
> > > 
> > > 
> > > Greetings everybody,
> > >  I am doing some research on possibility of using Tomcat to 
> > > do a project. General requirements as follows
> > > 1. A user will login to the web application and upload a file 
> > > to a remote server. He or she can only access his or her 
> > > WIN2K/NT domain to upload this file.
> > > 2. User will download a file or a number of files from the 
> > > remote server - again from his or her domain.
> > > I was told that I can do this job using Java Servlet and IBM 
> > > Websphere or BEA Weblogic.
> > > I am not sure if this is possible in Tomcat. Has anybody done 
> > > similar work using Tomcat. Can you share your experiences please?
> > > Thanks
> > > Raju Lokhande
> > > 
> > > 
> > > 
> > > **************************************************************
> > > ***********
> > > This message, together with any attachments, is intended only
> > > for the use of the individual or entity to which it is 
> addressed. It
> > > may contain information that is confidential and prohibited from
> > > disclosure.  If you are not the intended recipient, you are
> > > hereby notified that any dissemination or copying of this
> > > message or any attachment is strictly prohibited. If you have
> > > received this message in error, please notify the original sender
> > > immediately by telephone or by return e-mail and delete this
> > > message along with any attachments, from your computer.
> > > Thank you.
> > > **************************************************************
> > > ***********
> > > 
> > > 
> > > --
> > > To unsubscribe, e-mail:   
> > > <mailto:tomcat-user-unsubscribe@jakarta.apache.org>
> > > For additional commands, e-mail: 
> > > <mailto:tomcat-user-help@jakarta.apache.org>
> > > 
> > > 
> > 
> > --
> > To unsubscribe, e-mail:   
> > <mailto:tomcat-user-unsubscribe@jakarta.apache.org>
> > For additional commands, e-mail: 
> > <mailto:tomcat-user-help@jakarta.apache.org>
> > 
> > 
> 
> --
> To unsubscribe, e-mail:   
> <mailto:tomcat-user-unsubscribe@jakarta.apache.org>
> For additional commands, e-mail: 
> <mailto:tomcat-user-help@jakarta.apache.org>
> 
> 

--
To unsubscribe, e-mail:   <mailto:tomcat-user-unsubscribe@jakarta.apache.org>
For additional commands, e-mail: <mailto:tomcat-user-help@jakarta.apache.org>


Mime
View raw message