Return-Path: Delivered-To: apmail-jakarta-tomcat-user-archive@apache.org Received: (qmail 45166 invoked from network); 30 May 2003 07:28:27 -0000 Received: from exchange.sun.com (192.18.33.10) by daedalus.apache.org with SMTP; 30 May 2003 07:28:27 -0000 Received: (qmail 6875 invoked by uid 97); 30 May 2003 07:30:50 -0000 Delivered-To: qmlist-jakarta-archive-tomcat-user@nagoya.betaversion.org Received: (qmail 6868 invoked from network); 30 May 2003 07:30:49 -0000 Received: from daedalus.apache.org (HELO apache.org) (208.185.179.12) by nagoya.betaversion.org with SMTP; 30 May 2003 07:30:49 -0000 Received: (qmail 43746 invoked by uid 500); 30 May 2003 07:28:10 -0000 Mailing-List: contact tomcat-user-help@jakarta.apache.org; run by ezmlm Precedence: bulk List-Unsubscribe: List-Subscribe: List-Help: List-Post: List-Id: "Tomcat Users List" Reply-To: "Tomcat Users List" Delivered-To: mailing list tomcat-user@jakarta.apache.org Received: (qmail 43729 invoked from network); 30 May 2003 07:28:09 -0000 Received: from main.gmane.org (80.91.224.249) by daedalus.apache.org with SMTP; 30 May 2003 07:28:09 -0000 Received: from list by main.gmane.org with local (Exim 3.35 #1 (Debian)) id 19LeHB-0006n2-00 for ; Fri, 30 May 2003 09:26:09 +0200 X-Injected-Via-Gmane: http://gmane.org/ To: tomcat-user@jakarta.apache.org Received: from news by main.gmane.org with local (Exim 3.35 #1 (Debian)) id 19LeHA-0006mq-00 for ; Fri, 30 May 2003 09:26:08 +0200 From: "Bill Barker" Subject: Re: Antwort: Re: JAAS LoginModule ? Date: Fri, 30 May 2003 00:37:47 -0700 Lines: 159 Message-ID: References: X-Complaints-To: usenet@main.gmane.org X-MSMail-Priority: Normal X-Newsreader: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: news X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N "Oliver Wulff" wrote in message news:OF40D1D291.873EAD26-ONC1256D36.00270099-C1256D36.002741AF@email.zurich. com... > > > > > > The problem with filters is: > >>> > The problem is that the security contrains are evaluated before the > filter. So I guess that you may have to implement that what you want to > achive with the constraints on your own. (Or you have to configure apache > to do it, and this way omit the constraints from tomcat.) > > One tomcat specific way to come around that may be a Valve. (It is called > before any filter, but I don't know if it is called before the evaluation > of the constraints) Explicitly configured Valves are called before implicitly configured Authenticators. Explicitly configured Valves, and Explicitly configured Authenticators depends on the declaration order. > <<< > > I get this information some months ago from Ralph Einfeldt. > Authentication is not part of the J2EE specification. So, if you want to > customize this step, you have to do it individually for each container. > > Oliver > > > > > > "Bill Barker" > e.com> Kopie: > Gesendet von: Thema: Re: JAAS LoginModule ? > news > .org> > > > 30.05.2003 09:06 > Bitte antworten > an "Tomcat Users > List" > > > > > > > Nope. Realms and Authenticators are Tomcat-specific. There are reports on > this list of people using Filters to do much the same thing (i.e. search > the > archives). > > "Eric Chow" wrote in message > news:000501c3265d$f1be4b20$5c64a8c0@mctv... > > How can I do if I want to implmenet an Authenicator that can use in any > > other application servers.(JBoss, WebLogic, etc) ? > > > > Eric > > > > > > > > ----- Original Message ----- > > From: "Bill Barker" > > To: > > Sent: Friday, May 30, 2003 11:50 AM > > Subject: Re: JAAS LoginModule ? > > > > > > > It really depends on what you need to do. For the simplest case, you > > > implement your own Realm (public class MyRealm implements > > > org.apache.cataliana.Realm), and configure it in server.xml like > anyother > > > Realm. In TC 4.x, Realms don't have access to the Request/Response: > They > > > just get the login credentials, and are expected to validate them (or > not > > > :). > > > > > > If you need more control on authentication, then you need to implement > a > > > custom Authenticator (public class MyAuthenticator implements > > > Valve,Authenticator). This class gets full control over authenticating > a > > > Request, and can access anything in the Request/Response. You > configure > > it > > > via: > > > > > > > > > > > > > > > Neither of these (but especially the second) plays well with the admin > > > webapp. > > > > > > "Eric Chow" wrote in message > > > news:001c01c3264d$f8528240$5c64a8c0@mctv... > > > > Hello, > > > > > > > > In Tomcat, we can use container based authorization. > > > > > > > > Those username/password information can be place in a XML files or > use > > > > DBRealm, right ? > > > > > > > > > > > > How can I implement a login module, so that the Web Container will > > called > > > my > > > > module instead of the default login module. > > > > > > > > For example, the following is my login.jsp. > > > > > > > >
> > > > > > > > > > > > > > > >
> > > > > > > > When the above submit, it will pass to my LoginModule, how can I > > implement > > > > that part? > > > > > > > > Best regards, > > > > Eric > > > > > > > > ========================== > > > > If you know what you are doing, > > > > it is not called RESEARCH! > > > > ========================== > > > > > > > > > > > > > > > --------------------------------------------------------------------- > > > To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org > > > For additional commands, e-mail: tomcat-user-help@jakarta.apache.org > > > > > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org > For additional commands, e-mail: tomcat-user-help@jakarta.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org For additional commands, e-mail: tomcat-user-help@jakarta.apache.org