Return-Path: Delivered-To: apmail-tomcat-users-archive@www.apache.org Received: (qmail 5215 invoked from network); 21 Dec 2005 18:43:42 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur.apache.org with SMTP; 21 Dec 2005 18:43:42 -0000 Received: (qmail 1093 invoked by uid 500); 21 Dec 2005 18:43:27 -0000 Delivered-To: apmail-tomcat-users-archive@tomcat.apache.org Received: (qmail 1074 invoked by uid 500); 21 Dec 2005 18:43:27 -0000 Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Tomcat Users List" Delivered-To: mailing list users@tomcat.apache.org Received: (qmail 1063 invoked by uid 99); 21 Dec 2005 18:43:27 -0000 Received: from asf.osuosl.org (HELO asf.osuosl.org) (140.211.166.49) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 21 Dec 2005 10:43:27 -0800 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests=HTML_MESSAGE X-Spam-Check-By: apache.org Received-SPF: neutral (asf.osuosl.org: local policy) Received: from [67.96.169.25] (HELO mail2.flooddata.com) (67.96.169.25) by apache.org (qpsmtpd/0.29) with SMTP; Wed, 21 Dec 2005 10:43:26 -0800 Received: from localhost (localhost [127.0.0.1]) by mail2.flooddata.com (Postfix) with ESMTP id BAE6ED3E for ; Wed, 21 Dec 2005 12:43:05 -0600 (CST) Received: from mail2.flooddata.com ([127.0.0.1]) by localhost (mail2.flooddata.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 16742-27 for ; Wed, 21 Dec 2005 12:43:04 -0600 (CST) Received: from callisto.flooddata.com (callisto.flooddata.com [10.5.0.33]) by mail2.flooddata.com (Postfix) with ESMTP id ACAAEC8E for ; Wed, 21 Dec 2005 12:43:04 -0600 (CST) Received: from fdsvast06sxch01.flooddata.net (athena.flooddata.com [10.3.1.61]) by callisto.flooddata.com (Postfix) with ESMTP id A1A76B543 for ; Wed, 21 Dec 2005 12:43:04 -0600 (CST) X-MimeOLE: Produced By Microsoft Exchange V6.5 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----_=_NextPart_001_01C6065E.60CD61CD" Subject: Seamless Container Authentication Date: Wed, 21 Dec 2005 12:43:03 -0600 Message-ID: X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: Seamless Container Authentication Thread-Index: AcYGXmAB6NXdhVEoSJiYvgb1nIgQ0g== From: "Kenny, Robert" To: X-Virus-Scanned: by amavisd-maia+clamav at flooddata.com X-Virus-Checked: Checked by ClamAV on apache.org X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N ------_=_NextPart_001_01C6065E.60CD61CD Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Our users don't currently logon to our Tomcat servers directly; they are redirected to the Tomcat servers with their encrypted credentials (a security token). Our Tomcat Database Realm then seamlessly re-authenticates the user on the Tomcat server.=20 =20 We currently don't use Tomcat's container management for this but would like to but we need a way to logon to a Tomcat server instance seamlessly using the security credentials provided on the URL. We currently call servlets that then call the Database Realm directly.=20 =20 Is there a way to configure Tomcat so that when a protected resource is accessed it will attempt to authenticate the user to the container from the remote/custom Security Credentials in the URL before prompting the user for their Security Credentials ('j_security_check' logon page)? =20 Thanks, Robert ------_=_NextPart_001_01C6065E.60CD61CD--