tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Shaun Senecal <>
Subject Re: logging user login and logout
Date Mon, 17 May 2010 00:44:54 GMT
Thanks for all of the suggestions.  This should be enough to get me going!

On Fri, May 14, 2010 at 6:47 PM, Pid <> wrote:
> On 14/05/2010 10:34, Terry Horner wrote:
>>> -----Original Message-----
>>> From: Shaun Senecal []
>>> Sent: Friday, May 14, 2010 8:46 AM
>>> To: Tomcat Users List;
>>> Subject: Re: logging user login and logout
>>> I figured you would say to use a realm, but I was hoping there was
>>> another way :)  I'm using OpenSSO, which requires the use of its own
>>> Realm.  I will see if I can extend it to add the login auditing and
>>> still have everything work.
> If you're using the community version of OpenSSO maybe you could offer a
> modification back that extends.
> The Authenticator Valves are useful too, if a little more complicated.
> Small note: Valves & Realms are internal Tomcat components so may change.
>>> Using Tomcat 6, sorry I forgot to mention that.  I will take a look at
>>> the LockOutRealm, but unless I can have multiple realms it might not
>>> help me here.
> As Terry points out below, there are more Realm implementations and some
> can be used together.  I don't know your exact requirements (and you may
> not wish to discuss them in public) so I can only suggest that you do
> take a look and see what's on offer.
> p
>>> Thanks for the tip.  I'll give it a try.
>>> Shaun
>> You can probably write a CombinedRealm to wrap OpenSSO's realm - have your CombinedRealm
do the logging, and then it passes the requests on to the OpenSSo's realm. (So it will work
in a similar way to how LockOutRealm does)
>> Terry
>> _______________________________________
>> The information contained in this message is confidential and is intended for the
addressee only. If you have received this message in error or there are any problems please
notify the originator immediately.
>> The unauthorised use, disclosure, copying or alteration of this message is strictly
forbidden. This mail and any attachments have been scanned for viruses prior to leaving the
Dancerace network.
>> Dancerace plc will not be liable for direct, special, indirect or consequential damages
arising from the alteration of the contents of this message by a third party or as a result
of any virus being passed on.
>> Dancerace plc reserve the right to monitor and record e-mail messages sent to and
from this address for the purpose of investigating or detecting any unauthorised use of its
system and ensuring its effective operation.
>> _____________________________________________________________________
>> This message has been checked for all known viruses by UUNET delivered
>> through the MessageLabs Virus Control Centre. For further information visit
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail:
>> For additional commands, e-mail:

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message