tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Andrew Liles <>
Subject RE: [Q] Form-based authentication with DatasourceRealm
Date Thu, 24 Jul 2003 09:17:45 GMT
This is a three part problem.

First you have a process that does the challenging of access.  In the case
of Form Based Authentication this means 
redirecting the user to a login page.

Second you have a scheme to take the credentials the user provides and
validate them.  This is the job of the realm.  You should simply need to
replace the Realm element in Server.xml that currently refers to your
MemoryRealm and put in place the 
	<Realm className="org.apache.catalina.realm.UserDatabaseRealm"
                 debug="0" resourceName="UserDatabase"/>
element which is provided in the default server.xml (but commented out).  

Next this Realm is dependent on the 3rd part of the equation - the
UserDatabase resource.

This may be of some use:

> -----Original Message-----
> From: Riaan Oberholzer []
> Sent: 24 July 2003 09:51
> To:
> Subject: [Q] Form-based authentication with DatasourceRealm
> Hi,
> I'm trying to use Realms for the first time. The
> documentation of Tomcat is pretty straight foward and
> everything is clear (and surprisingly simple), except
> how I must name the "action=???" paramaters for my
> form in which the authentication is done.
> The Tomcat example is:
> <form method="POST" action='<%=
> response.encodeURL("j_security_check") %>' >
> for a MemoryRealm
> Is this standard for all Realms and can/should I use
> it as is, or how does it look for a Datasource Realm?
> Thanks!
> __________________________________
> Do you Yahoo!?
> Yahoo! SiteBuilder - Free, easy-to-use web site design software
> ---------------------------------------------------------------------
> To unsubscribe, e-mail:
> For additional commands, e-mail:
> _____________________________________________________________________
> This e-mail has been scanned for viruses by MessageLabs.

This e-mail has been scanned for viruses by MessageLabs.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message