tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Will Hartung" <wi...@msoft.com>
Subject Re: Form based security and "Remember Me"
Date Thu, 20 Feb 2003 21:00:24 GMT
> From: "John Trollinger" <jakarta@trollingers.com>
> Sent: Thursday, February 20, 2003 12:31 PM
> Subject: RE: Form based security and "Remember Me"


> But does this work with Form based authenticaiton and realms... How do
> you let the realm know that the user remembered so the login can be
> bypassed?

This was touched on before, but the basic problem is that a Servlet does not
have a portable way of actually setting the authentication details necessary
for you to do what you want to do.

What you want to do, essentially, is have a servlet do your authentication
before in order to bypass the containers inherent authentication mechanism.
But, the API doesn't let you do this.

Which means you have to implement all of your own security some other way.

Which is a drag.

Regards,

Will Hartung
(willh@msoft.com)




---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org


Mime
View raw message