Return-Path: 
 <tomcat-user-return-120542-apmail-jakarta-tomcat-user-archive=jakarta.apache.org@jakarta.apache.org>
Delivered-To: apmail-jakarta-tomcat-user-archive@www.apache.org
Received: (qmail 23554 invoked from network); 1 Feb 2005 21:11:35 -0000
Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199)
  by minotaur-2.apache.org with SMTP; 1 Feb 2005 21:11:35 -0000
Received: (qmail 46578 invoked by uid 500); 1 Feb 2005 21:11:21 -0000
Delivered-To: apmail-jakarta-tomcat-user-archive@jakarta.apache.org
Received: (qmail 46527 invoked by uid 500); 1 Feb 2005 21:11:21 -0000
Mailing-List: contact tomcat-user-help@jakarta.apache.org; run by ezmlm
Precedence: bulk
List-Unsubscribe: <mailto:tomcat-user-unsubscribe@jakarta.apache.org>
List-Subscribe: <mailto:tomcat-user-subscribe@jakarta.apache.org>
List-Help: <mailto:tomcat-user-help@jakarta.apache.org>
List-Post: <mailto:tomcat-user@jakarta.apache.org>
List-Id: "Tomcat Users List" <tomcat-user.jakarta.apache.org>
Reply-To: "Tomcat Users List" <tomcat-user@jakarta.apache.org>
Delivered-To: mailing list tomcat-user@jakarta.apache.org
Received: (qmail 46513 invoked by uid 99); 1 Feb 2005 21:11:21 -0000
X-ASF-Spam-Status: No, hits=-10.0 required=10.0
	tests=ALL_TRUSTED
X-Spam-Check-By: apache.org
Received: from minotaur.apache.org (HELO [127.0.0.1]) (209.237.227.194)
  by apache.org (qpsmtpd/0.28) with ESMTP; Tue, 01 Feb 2005 13:11:21 -0800
Message-ID: <41FFF077.2090003@apache.org>
Date: Tue, 01 Feb 2005 21:11:19 +0000
From: Mark Thomas <markt@apache.org>
User-Agent: Mozilla Thunderbird 1.0 (Windows/20041206)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: Tomcat Users List <tomcat-user@jakarta.apache.org>
Subject: Re: How to map client certificate to user or group?
References: <30D098082BE3EC4C88BCA42DB56259B27BF313@finmail13.nordic.x>
In-Reply-To: <30D098082BE3EC4C88BCA42DB56259B27BF313@finmail13.nordic.x>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 8bit
X-Virus-Checked: Checked
X-Spam-Rating: minotaur-2.apache.org 1.6.2 0/1000/N

I think you would need to write a custom realm implementation.

Mark

Hein�l� Petri wrote:
> Thanks!
> 
> That works with listed entries, but how I can map all certificates to one role? I have plans to do further certificate checking in my application.
> 
> Petri
> -----Original Message-----
> From: Mark Thomas [mailto:markt@apache.org] 
> Sent: 1. helmikuuta 2005 20:37
> To: Tomcat Users List
> Subject: Re: How to map client certificate to user or group?
> 
> What realm are you using? If you are using the memory realm you will 
> need something like the following in tomcat-users.xml
> 
> <user username="CN=Mark Thomas, OU=Jakarta, O=Apache, L=London, ST=None, 
> C=GB" password="null" roles="tomcat"/>
> 
> Mark
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
> For additional commands, e-mail: tomcat-user-help@jakarta.apache.org
> 
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
> For additional commands, e-mail: tomcat-user-help@jakarta.apache.org
> 
> 
> 


---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org