tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "alee amin" <mailing.list.mail...@gmail.com>
Subject Re: Tomcat Security Problem
Date Fri, 08 Feb 2008 07:12:13 GMT
I have placed the following configuration in server.xml file after reading
from tomcat site

<Host>
 ... ...
                <context path="/application2-web">
                    <Realm className="org.apache.catalina.realm.JDBCRealm"
                        debug="99"
                        driverName="org.gjt.mm.mysql.Driver"

connectionURL="jdbc:mysql://localhost:3306/application2"
                        connectionName="root"
                        connectionPassword="mypassword"
                        userTable="user"
                        userNameCol="user_name"
                        userCredCol="user_password"
                        userRoleTable="user_role"
                        roleNameCol="role_name"
                        digest="MD5"/>
                </context>
</Host>

But it is not allowing me to log in.


On Feb 8, 2008 11:26 AM, alee amin <mailing.list.mail.id@gmail.com> wrote:

> actually i am not able to get what you mean by context? should i insert it
> in conf/server.xml or somewhere else. It is confusing me.
>
>
> On Feb 7, 2008 8:59 PM, Caldarale, Charles R <Chuck.Caldarale@unisys.com>
> wrote:
>
> > > From: alee amin [mailto:mailing.list.mail.id@gmail.com]
> > > Subject: Re: Tomcat Security Problem
> > >
> > > How can i make it available for it and at the same
> > > time i want application 1 BASIC AUTHENTICATION based
> > > on tomcat-users.xml file.
> >
> > I already answered that question:
> >
> > > > Sounds like you need to put it inside the <Context> of your
> > > > application 2, not inside the <Host> or <Engine> where you
> > > > now have it.
> >
> > Leave the original tomcat-users.xml <Realm> where it is, and put your
> > more secure <Realm> inside the <Context> element of application 2.
> >
> >  - Chuck
> >
> >
> > THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY
> > MATERIAL and is thus for use only by the intended recipient. If you
> > received this in error, please contact the sender and delete the e-mail
> > and its attachments from all computers.
> >
> > ---------------------------------------------------------------------
> > To start a new topic, e-mail: users@tomcat.apache.org
> > To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> > For additional commands, e-mail: users-help@tomcat.apache.org
> >
> >
>
>
> --
> Muhammad Ali
> http://techboard.wordpress.com
> Software Engineer - E2ESP
> muhammadaliamin(at)gmail(dot)com
>



-- 
Muhammad Ali
http://techboard.wordpress.com
Software Engineer - E2ESP
muhammadaliamin(at)gmail(dot)com

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message