Return-Path: Delivered-To: apmail-tomcat-users-archive@www.apache.org Received: (qmail 21201 invoked from network); 17 Dec 2010 08:28:42 -0000 Received: from unknown (HELO mail.apache.org) (140.211.11.3) by 140.211.11.9 with SMTP; 17 Dec 2010 08:28:42 -0000 Received: (qmail 35694 invoked by uid 500); 17 Dec 2010 08:28:39 -0000 Delivered-To: apmail-tomcat-users-archive@tomcat.apache.org Received: (qmail 35468 invoked by uid 500); 17 Dec 2010 08:28:39 -0000 Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Tomcat Users List" Delivered-To: mailing list users@tomcat.apache.org Received: (qmail 35450 invoked by uid 99); 17 Dec 2010 08:28:38 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 17 Dec 2010 08:28:38 +0000 X-ASF-Spam-Status: No, hits=0.7 required=10.0 tests=RCVD_IN_DNSWL_NONE,SPF_NEUTRAL X-Spam-Check-By: apache.org Received-SPF: neutral (athena.apache.org: local policy) Received: from [193.252.22.151] (HELO smtp6.freeserve.com) (193.252.22.151) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 17 Dec 2010 08:28:32 +0000 Received: from me-wanadoo.net (localhost [127.0.0.1]) by mwinf3502.me.freeserve.com (SMTP Server) with ESMTP id 51C527000086 for ; Fri, 17 Dec 2010 09:28:10 +0100 (CET) Received: from me-wanadoo.net (localhost [127.0.0.1]) by mwinf3502.me.freeserve.com (SMTP Server) with ESMTP id 455A57000087 for ; Fri, 17 Dec 2010 09:28:10 +0100 (CET) Received: from mail.homeinbox.net (unknown [91.109.179.251]) by mwinf3502.me.freeserve.com (SMTP Server) with ESMTP id 25BFF7000086 for ; Fri, 17 Dec 2010 09:28:10 +0100 (CET) X-ME-UUID: 20101217082810154.25BFF7000086@mwinf3502.me.freeserve.com Received: from localhost (localhost [127.0.0.1]) by mail.homeinbox.net (Postfix) with ESMTP id 4B39EEAA4BE for ; Fri, 17 Dec 2010 08:28:09 +0000 (GMT) X-Virus-Scanned: Debian amavisd-new at homeinbox.net Received: from mail.homeinbox.net ([127.0.0.1]) by localhost (mail.homeinbox.net [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CO7l-AZ39i8O for ; Fri, 17 Dec 2010 08:28:04 +0000 (GMT) Received: from [192.168.23.9] (study03.dev.local [192.168.23.9]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by mail.homeinbox.net (Postfix) with ESMTPSA id B9DA3EAA4BB for ; Fri, 17 Dec 2010 08:28:04 +0000 (GMT) Message-ID: <4D0B1F0C.7040509@apache.org> Date: Fri, 17 Dec 2010 08:27:56 +0000 From: Mark Thomas User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.2; en-GB; rv:1.9.2.13) Gecko/20101207 Thunderbird/3.1.7 MIME-Version: 1.0 To: Tomcat Users List Subject: Re: Authentication and roles (RFE) References: <724641E4F893DA4B8DEF551BA9DAB5B30F71F481D6@exch-2> <3469749587434152714@unknownmsgid> In-Reply-To: <3469749587434152714@unknownmsgid> X-Enigmail-Version: 1.1.1 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit On 17/12/2010 07:36, Pid * wrote: > On 17 Dec 2010, at 00:37, Steve Mitchell wrote: > >> I would like my Tomcat instance to authenticate different roles differently. E.g., admins must use SSL client auth, while regular users use HTTP basic authentication over SSL. This seems like a routine requirement, but it's unsupported in Tomcat 6 (or 7). > > Look at the MultiRealm in the docs/svn. Multiple Realms won't help. What is required is multiple authenticators which isn't supported. Mark --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org For additional commands, e-mail: users-help@tomcat.apache.org