Return-Path: Delivered-To: apmail-jakarta-tomcat-user-archive@www.apache.org Received: (qmail 10652 invoked from network); 23 Feb 2004 19:50:07 -0000 Received: from daedalus.apache.org (HELO mail.apache.org) (208.185.179.12) by minotaur-2.apache.org with SMTP; 23 Feb 2004 19:50:07 -0000 Received: (qmail 69641 invoked by uid 500); 23 Feb 2004 19:49:37 -0000 Delivered-To: apmail-jakarta-tomcat-user-archive@jakarta.apache.org Received: (qmail 69619 invoked by uid 500); 23 Feb 2004 19:49:37 -0000 Mailing-List: contact tomcat-user-help@jakarta.apache.org; run by ezmlm Precedence: bulk List-Unsubscribe: List-Subscribe: List-Help: List-Post: List-Id: "Tomcat Users List" Reply-To: "Tomcat Users List" Delivered-To: mailing list tomcat-user@jakarta.apache.org Received: (qmail 69519 invoked from network); 23 Feb 2004 19:49:23 -0000 Received: from unknown (HELO wave.geekisp.com) (204.89.131.89) by daedalus.apache.org with SMTP; 23 Feb 2004 19:49:23 -0000 Received: (qmail 26317 invoked from network); 23 Feb 2004 19:41:52 -0000 Received: from dune.geekisp.com (HELO ?IPv6:::1?) (danielt@gspiral.com@204.89.131.106) by mail.geekisp.com with RC4-SHA encrypted SMTP; 23 Feb 2004 19:41:51 -0000 Mime-Version: 1.0 (Apple Message framework v612) Content-Transfer-Encoding: 7bit Message-Id: Content-Type: text/plain; charset=US-ASCII; format=flowed To: tomcat-user@jakarta.apache.org From: Dan Thiffault Subject: JAAS and Datasources Date: Mon, 23 Feb 2004 14:45:19 -0500 X-Mailer: Apple Mail (2.612) X-Spam-Checker-Version: SpamAssassin 2.63 (2004-01-11) on wave.geekisp.com X-Spam-Level: X-Spam-Status: No, hits=0.0 required=9.0 tests=none autolearn=no version=2.63 X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N X-Spam-Rating: minotaur-2.apache.org 1.6.2 0/1000/N Hello, I am trying to transition my companies internal applications from IIS contained ASP pages to jsp pages using struts on tomcat. Currently we are using tomcat 4 but we could easily be swayed to switching to version 5 as we are just in the beginning stages of development. Currently our internal web apps are secured using integrated windows authentication. We have a custom component to check user roles in active directory. Connections to our sql db are handled using a component which runs under fixed permissions. With our new setup we would like to continue using windows integrated authentication. We already have a form based login working with active directory. Secondly, but more importantly, after authenticating the user as valid for the particular resource, we would like to use their credentials to log on to our MS SQL server, which we currently have using mixed mode authentication. I've searched through a number of web sites but I feel a little lost as to where to begin. My best guess is that we want to use JAAS with Kerberos 5 for authenticating but I'm not sure once a user is authenticated within an app how that would be applied to a datasource's credentials. Is the db connection made using a JAAS run as? Thank you for any direction, ideas, or sample code. -Dan T --------------------------------------------------------------------- To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org For additional commands, e-mail: tomcat-user-help@jakarta.apache.org