Return-Path: Delivered-To: apmail-jakarta-tomcat-dev-archive@jakarta.apache.org Received: (qmail 11543 invoked by uid 500); 13 Sep 2001 16:29:34 -0000 Mailing-List: contact tomcat-dev-help@jakarta.apache.org; run by ezmlm Precedence: bulk list-help: list-unsubscribe: list-post: Reply-To: tomcat-dev@jakarta.apache.org Delivered-To: mailing list tomcat-dev@jakarta.apache.org Received: (qmail 11530 invoked from network); 13 Sep 2001 16:29:34 -0000 Date: 13 Sep 2001 16:29:35 -0000 Message-ID: <20010913162935.8421.qmail@nagoya.betaversion.org> From: bugzilla@apache.org To: tomcat-dev@jakarta.apache.org Cc: Subject: [DO NOT REPLY: Bug 3588] Make roles of a user available X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N PLEASE DO NOT REPLY TO THIS MESSAGE. TO FURTHER COMMENT ON THE STATUS OF THIS BUG PLEASE FOLLOW THE LINK BELOW AND USE THE ON-LINE APPLICATION. REPLYING TO THIS MESSAGE DOES NOT UPDATE THE DATABASE, AND SO YOUR COMMENT WILL BE LOST SOMEWHERE. http://nagoya.apache.org/bugzilla/show_bug.cgi?id=3588 *** shadow/3588 Thu Sep 13 09:19:30 2001 --- shadow/3588.tmp.8416 Thu Sep 13 09:29:35 2001 *************** *** 2,9 **** | Make roles of a user available | +----------------------------------------------------------------------------+ | Bug #: 3588 Product: Tomcat 4 | ! | Status: NEW Version: 4.0 Release Candidate 1 | ! | Resolution: Platform: Other | | Severity: Enhancement OS/Version: Other | | Priority: Other Component: Catalina | +----------------------------------------------------------------------------+ --- 2,9 ---- | Make roles of a user available | +----------------------------------------------------------------------------+ | Bug #: 3588 Product: Tomcat 4 | ! | Status: RESOLVED Version: 4.0 Release Candidate 1 | ! | Resolution: WONTFIX Platform: Other | | Severity: Enhancement OS/Version: Other | | Priority: Other Component: Catalina | +----------------------------------------------------------------------------+ *************** *** 26,29 **** This is partly the same for Tomcat 3.x, but as the new classes in Catalina are more modular and sophisticated I assume such enhancement to be more useful for ! the new generation of Tomcat. --- 26,40 ---- This is partly the same for Tomcat 3.x, but as the new classes in Catalina are more modular and sophisticated I assume such enhancement to be more useful for ! the new generation of Tomcat. ! ! ------- Additional Comments From craig.mcclanahan@sun.com 2001-09-13 09:29 ------- ! Tomcat (all versions) conforms to the standard servlet APIs, and these APIs ! provide no mechanism to ask for all the roles a user has. Indeed, in some ! security environments, there *is* no single place where this information is ! accumulated, so it would not always be possible to implement such a method. ! ! You could certainly write a piece of code (installed *inside* Tomcat so that it ! has visibility to the needed classes) that makes this info available for the ! default Realm implementations, but it would be specific to Tomcat and not ! portable to any other container.