tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Rob Tomlin" <>
Subject RE: Obtaining authenticate principal from HttpSession...
Date Tue, 13 May 2003 14:33:46 GMT
> so your design is flawed

I can change my design ;-)

> you can manually stuff the Principal into the session as an attribute
> if you'd like.

Is this the only way to do it ?

I have an client application which is making requests. I want to handle the request
and forward them to another server, but as a previously authenticated user.

In other cases I have simply used jsessionid in the url to reuse the user, but
I cannot do this in this specific case.

My idea was to use the sessoin Id to identify the user, but as you say this is
no good.

Have you any suggestions ?


Rob Tomlin

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message