Return-Path: 
 <users-return-170435-apmail-tomcat-users-archive=tomcat.apache.org@tomcat.apache.org>
Delivered-To: apmail-tomcat-users-archive@www.apache.org
Received: (qmail 87493 invoked from network); 5 Oct 2007 07:57:47 -0000
Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2)
  by minotaur.apache.org with SMTP; 5 Oct 2007 07:57:47 -0000
Received: (qmail 16820 invoked by uid 500); 5 Oct 2007 07:56:44 -0000
Delivered-To: apmail-tomcat-users-archive@tomcat.apache.org
Received: (qmail 16790 invoked by uid 500); 5 Oct 2007 07:56:44 -0000
Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:users-help@tomcat.apache.org>
List-Unsubscribe: <mailto:users-unsubscribe@tomcat.apache.org>
List-Post: <mailto:users@tomcat.apache.org>
List-Id: <users.tomcat.apache.org>
Reply-To: "Tomcat Users List" <users@tomcat.apache.org>
Delivered-To: mailing list users@tomcat.apache.org
Received: (qmail 16774 invoked by uid 99); 5 Oct 2007 07:56:44 -0000
Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136)
    by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 05 Oct 2007 00:56:44 -0700
X-ASF-Spam-Status: No, hits=-0.0 required=10.0
	tests=SPF_PASS
X-Spam-Check-By: apache.org
Received-SPF: pass (athena.apache.org: domain of p@pidster.com designates
 87.106.82.221 as permitted sender)
Received: from [87.106.82.221] (HELO s15243851.onlinehome-server.info)
 (87.106.82.221)
    by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 05 Oct 2007 07:56:46 +0000
Received: (qmail 10584 invoked from network); 5 Oct 2007 08:55:10 +0100
Received: from 87-194-39-44.bethere.co.uk (HELO phoenix.config) (87.194.39.44)
  by s15243851.onlinehome-server.info with SMTP; 5 Oct 2007 08:55:10 +0100
Message-ID: <4705EDBD.60901@pidster.com>
Date: Fri, 05 Oct 2007 08:54:37 +0100
From: Pid <p@pidster.com>
Reply-To: p@pidster.com
Organization: Pid Inc
User-Agent: Thunderbird 2.0.0.6 (Macintosh/20070728)
MIME-Version: 1.0
To: Tomcat Users List <users@tomcat.apache.org>
Subject: Re: Authorization on Apache Tomcat the J2ee Way.
References: <cbeef55d0710050022k44a78e87t4d25b973217163b4@mail.gmail.com>
In-Reply-To: <cbeef55d0710050022k44a78e87t4d25b973217163b4@mail.gmail.com>
X-Enigmail-Version: 0.95.3
OpenPGP: id=0927AE57
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
X-Virus-Checked: Checked by ClamAV on apache.org

Arun wrote:
> Hi,
> I have a tomcat 6 installed. I have a running webapplication . I need to
> implement a role based access control. How can I combine servers caabilities
> so that I can use the request.getPrincipal() method ... I also have  a list
> of roles and groups and who all are assigned what all roles/groups in db.
> Now its time to implement an access control mechanism. I do not want Basic
> authentication with a popup. I will be logging in by a normal html sign in
> form, with a username and password field. Once that is done everything
> should be the J2EE way. The roles for that user should get added to the
> request and I can use it for authorization.
> 

Form based authentication, part of the servlet spec, is what you are
referring to.  Google is your friend.

http://tomcat.apache.org/tomcat-6.0-doc/realm-howto.html

p

---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org