From users-return-164288-apmail-tomcat-users-archive=tomcat.apache.org@tomcat.apache.org Thu Jun 07 18:43:38 2007 Return-Path: Delivered-To: apmail-tomcat-users-archive@www.apache.org Received: (qmail 48025 invoked from network); 7 Jun 2007 18:43:37 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 7 Jun 2007 18:43:37 -0000 Received: (qmail 21324 invoked by uid 500); 7 Jun 2007 18:43:27 -0000 Delivered-To: apmail-tomcat-users-archive@tomcat.apache.org Received: (qmail 21297 invoked by uid 500); 7 Jun 2007 18:43:27 -0000 Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Tomcat Users List" Delivered-To: mailing list users@tomcat.apache.org Received: (qmail 21282 invoked by uid 99); 7 Jun 2007 18:43:27 -0000 Received: from herse.apache.org (HELO herse.apache.org) (140.211.11.133) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 07 Jun 2007 11:43:27 -0700 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests= X-Spam-Check-By: apache.org Received-SPF: neutral (herse.apache.org: local policy) Received: from [204.127.225.96] (HELO alnrmhc16.comcast.net) (204.127.225.96) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 07 Jun 2007 11:43:22 -0700 Received: from [192.168.13.56] (c-68-50-201-35.hsd1.va.comcast.net[68.50.201.35]) by comcast.net (alnrmhc16) with SMTP id <20070607184301b1600o4hs1e>; Thu, 7 Jun 2007 18:43:01 +0000 Mime-Version: 1.0 (Apple Message framework v752.2) In-Reply-To: <466836A4.509@pidster.com> References: <9FD7EABE-EE94-460A-A165-AD6B8C0E2105@tchijov.com> <466836A4.509@pidster.com> Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed Message-Id: <53289A64-3591-4B91-B0B5-1B74D24FEF51@tchijov.com> Content-Transfer-Encoding: 7bit From: Andrei Tchijov Subject: Re: Is it possible to introduce new authentication method without modifying tomcat? Date: Thu, 7 Jun 2007 14:42:59 -0400 To: "Tomcat Users List" X-Mailer: Apple Mail (2.752.2) X-Virus-Checked: Checked by ClamAV on apache.org I will be first to admin that I may be silly bugger, but I can not see how JAASRealm can help me. Nowhere in the code I can see any indication of how to get to HTTP Request and HTTP Response from Realm code. Please enlighten... Andrei On Jun 7, 2007, at 12:47 PM, Pid wrote: > Andrei Tchijov wrote: >> Hi, >> I want to be able to add my own authentication method (login- >> config/auth-method) as one of possible choices. Is it possible to >> do so without re-compiling tomcat? Ideally, I would love to be >> able to achieve my goal by changing server.xml file (and adding >> some jars with my custom code to tomcat). >> Before any one suggested that I should write custom Realm: I think >> it will not work for me. My authentication method require access >> to ALL information available from HTTP Request (not just user name/ >> password) also in some situations, access to HTTP Response is >> required as well. It looks like this method: >> protected abstract boolean authenticate(Request >> request,Response response,LoginConfig config) throws IOException; >> or AuthenticatorBase class is the best place to be. >> Your comments will be highly appreciated, > > Have you looked into using a JAASRealm? > > p > >> Andrei Tchijov >> --------------------------------------------------------------------- >> To start a new topic, e-mail: users@tomcat.apache.org >> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org >> For additional commands, e-mail: users-help@tomcat.apache.org > --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org For additional commands, e-mail: users-help@tomcat.apache.org