tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Tracy Spratt" <tspr...@lariatinc.com>
Subject RE: IIS6 -> ASP.Net -> JK -> TC5 - tomcatAuthentication=false: user auth not getting passed?
Date Wed, 07 Sep 2005 20:41:41 GMT
Thanks for the response, Allistair, but that was already set as you
suggested.

Perhaps I should after all skip the Windows - based authentication step
and go directly to my real need, which is using the asp.net
authentication token  in my Tomcat app.

Is this possible?  The request dump shows the asp session and
authenticate cookies are being sent.  Is there any way to access those
from within Tomcat?

When tomcatAuthentication="false", what exactly does Tomcat need in the
request headers to work?  Is there any way to configure it?

Tracy

-----Original Message-----
From: Allistair Crossley [mailto:Allistair.Crossley@QAS.com] 
Sent: Wednesday, September 07, 2005 4:08 AM
To: Tomcat Users List; fzlists@omnytex.com
Subject: RE: IIS6 -> ASP.Net -> JK -> TC5 - tomcatAuthentication=false:
user auth not getting passed?

Hi,

You probably need to ensure that the IIS virtual directory for the
jakarta dll has Directory Security set to Windows Integrated?

Allistair.

> -----Original Message-----
> From: Tracy Spratt [mailto:tspratt@lariatinc.com]
> Sent: 07 September 2005 01:03
> To: Tomcat Users List; fzlists@omnytex.com
> Subject: IIS6 -> ASP.Net -> JK -> TC5 - 
> tomcatAuthentication=false: user
> auth not getting passed?
> 
> 
> I want to pass authorization from my dot.Net app to the Tomcat app.
> 
> Unsecured, everything is working fine: IIS runs the asp.net app, which
> in turn loads the Tomcat app (a Macromedia Flex app to be specific).
> 
> But the asp.net app is secured, and the JK - isapi_redirect 
> allows users
> to directly access the Tomcat app, which is not desired.
> 
> To start with, I have configured basic security, protected the
> application with a <security-constraint>, and tested it with direct
> calls to the TC server / app, and all worked as expected.  
> 
> However when I set the tomcatAuthentication="false", my 
> Tomcat app does
> not run, and judging by the RequestDumperValve output, IIS is not
> passing the user name to Tomcat, and it also reports status 403.
> 
> My long term goal is to use the asp.net authentication in the Tomcat
> app, but in the short run I would just like to get anything working,
> like the Windows user for example.
> 
> Any suggestions will be appreciated.  I have included a listing of the
> RequestDumperValve output below.
> 
> Tracy Spratt
> 
> Catalina_log:
> 
>  REQUEST URI
> =/flex/ltApplications/Clients/Patterson/FirePump.mxml.swf
>            authType=
>   characterEncoding=null
>       contentLength=0
>         contentType=null
>         contextPath=/flex
>              cookie=ASP.NET_SessionId=hqoaxr45jokfpzabz4giluft
>  
> cookie=Authenticate=7808CB3E915F5EBD2AC05801D91542013C4B04B393
> 12E1B2335B
> 32395880A6C05638E108982CA4917853D032EC9EFD47EB20A56448A23EF366
> 5B48F57F49
> BD387D254B570373404A
>              header=connection=Keep-Alive
>              header=accept=*/*
>              header=accept-encoding=gzip, deflate
>              header=cookie=ASP.NET_SessionId=hqoaxr45jokfpzabz4giluft;
> Authenticate=7808CB3E915F5EBD2AC05801D91542013C4B04B39312E1B23
> 35B3239588
> 0A6C05638E108982CA4917853D032EC9EFD47EB20A56448A23EF3665B48F57
> F49BD387D2
> 54B570373404A
>              header=host=www.lariatinc.com
>              header=if-modified-since=Thu, 01 Sep 2005 21:43:30 GMT
>              header=user-agent=Mozilla/4.0 (compatible; MSIE 6.0;
> Windows NT 5.1; SV1; .NET CLR 1.1.4322)
>              header=x-flash-version=7,0,35,29
>              header=content-length=0
>              locale=en_US
>              method=GET
>            pathInfo=null
>            protocol=HTTP/1.1
>         queryString=null
>          remoteAddr=172.31.255.55
>          remoteHost=172.31.255.55
>          remoteUser=
>  requestedSessionId=null
>              scheme=http
>          serverName=www.lariatinc.com
>          serverPort=80
>         
> servletPath=/ltApplications/Clients/Patterson/FirePump.mxml.swf
>            isSecure=false
>  ---------------------------------------------------------------
>  ---------------------------------------------------------------
>            authType=
>       contentLength=-1
>         contentType=null
>             message=null
>          remoteUser=
>              status=403
>  ===============================================================
> 
> 
> 
> 
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
> For additional commands, e-mail: tomcat-user-help@jakarta.apache.org
> 
> 


<FONT SIZE=1 FACE="VERDANA,ARIAL" COLOR=BLUE> 
-------------------------------------------------------
QAS Ltd.
Registered in England: No 2582055
Registered in Australia: No 082 851 474
-------------------------------------------------------
</FONT>


---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org




---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org


Mime
View raw message