tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Frederic.Visti...@alcatel.fr
Subject JAAS DIGEST authentication Tomcat5.5.17
Date Thu, 04 May 2006 12:53:52 GMT
I have Tomcat working with FORM and BASIC authentication. All is OK for 
this 2 modes.
When i try with DIGEST and insert digest="MD5" in the JAAS realm i have 
the error copied in attach.
IS Digest supported with JAAS in this Tomcat version ??? What can i do ? 
Is it a bug ? or a configuration pb ??
The pb is not due to clearText password or digested password because my 
LoginModule in charge of authentication is not called !!!

With the 2 other authentication modules (FORM and BASIC)the LoginModule is 
called. With DIGEST, the LoginModule is not called (no traces in any 
methods (initialize, login, commit, logout...)).

server.xml
<Context path="/realms" codebase="realms">
        <Realm digest="MD5" 
className="org.apache.catalina.realm.JAASRealm" 
appName="TomCatAdminApplication" 
userClassNames="com.alcatel.in.osp.services.web.jaas.INPrincipal"    
roleClassNames="com.alcatel.in.osp.services.web.jaas.INRolePrincipal" />
</Context> 

web.xml
<security-constraint>
        <web-resource-collection>
            <web-resource-name>admin-realm</web-resource-name>
            <url-pattern>/faces/admin/*</url-pattern>
        </web-resource-collection>
        <auth-constraint>
            <role-name>in-admin</role-name>
        </auth-constraint>
    </security-constraint>
    <login-config>
        <auth-method>DIGEST</auth-method>
        <realm-name>admin-realm</realm-name>
        <form-login-config>
            <form-login-page>/faces/login.jspx</form-login-page>
            <form-error-page>/faces/login.jspx</form-error-page>
        </form-login-config>
    </login-config>
    <security-role>
        <description>INAdmin</description>
        <role-name>in-admin</role-name>
    </security-role>
    <security-role>
        <description>User</description>
        <role-name>user</role-name>
    </security-role>

1 mai 2006 23:36:52 org.apache.catalina.startup.HostConfig checkResources
FIN: Checking context[/manager] reload resource C:\Program Files\Apache 
Software Foundation\Tomcat 5.5\conf\context.xml
1 mai 2006 23:36:56 org.apache.catalina.authenticator.AuthenticatorBase 
invoke
FIN: Security checking request GET /realms/faces/admin/admin.jspx
1 mai 2006 23:36:56 org.apache.catalina.realm.RealmBase 
findSecurityConstraints
FIN:   Checking constraint 'SecurityConstraint[admin]' against GET 
/faces/admin/admin.jspx --> true
1 mai 2006 23:36:56 org.apache.catalina.realm.RealmBase 
findSecurityConstraints
FIN:   Checking constraint 'SecurityConstraint[admin]' against GET 
/faces/admin/admin.jspx --> true
1 mai 2006 23:36:56 org.apache.catalina.authenticator.AuthenticatorBase 
invoke
FIN:  Calling hasUserDataPermission()
1 mai 2006 23:36:56 org.apache.catalina.realm.RealmBase 
hasUserDataPermission
FIN:   User data constraint has no restrictions
1 mai 2006 23:36:56 org.apache.catalina.authenticator.AuthenticatorBase 
invoke
FIN:  Calling authenticate()
1 mai 2006 23:36:56 org.apache.catalina.authenticator.AuthenticatorBase 
invoke
FIN:  Failed authenticate() test
1 mai 2006 23:37:02 org.apache.catalina.startup.HostConfig checkResources
Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message