Return-Path: Delivered-To: apmail-jakarta-tomcat-dev-archive@apache.org Received: (qmail 85367 invoked from network); 7 Apr 2003 14:47:25 -0000 Received: from exchange.sun.com (192.18.33.10) by daedalus.apache.org with SMTP; 7 Apr 2003 14:47:25 -0000 Received: (qmail 18980 invoked by uid 97); 7 Apr 2003 14:49:18 -0000 Delivered-To: qmlist-jakarta-archive-tomcat-dev@nagoya.betaversion.org Received: (qmail 18972 invoked from network); 7 Apr 2003 14:49:17 -0000 Received: from daedalus.apache.org (HELO apache.org) (208.185.179.12) by nagoya.betaversion.org with SMTP; 7 Apr 2003 14:49:17 -0000 Received: (qmail 84530 invoked by uid 500); 7 Apr 2003 14:47:15 -0000 Mailing-List: contact tomcat-dev-help@jakarta.apache.org; run by ezmlm Precedence: bulk List-Unsubscribe: List-Subscribe: List-Help: List-Post: List-Id: "Tomcat Developers List" Reply-To: "Tomcat Developers List" Delivered-To: mailing list tomcat-dev@jakarta.apache.org Received: (qmail 84517 invoked from network); 7 Apr 2003 14:47:15 -0000 Received: from main.gmane.org (80.91.224.249) by daedalus.apache.org with SMTP; 7 Apr 2003 14:47:15 -0000 Received: from list by main.gmane.org with local (Exim 3.35 #1 (Debian)) id 192XtZ-0006MQ-00 for ; Mon, 07 Apr 2003 16:46:49 +0200 X-Injected-Via-Gmane: http://gmane.org/ To: tomcat-dev@jakarta.apache.org Received: from news by main.gmane.org with local (Exim 3.35 #1 (Debian)) id 192XtX-0006M7-00 for ; Mon, 07 Apr 2003 16:46:47 +0200 From: Costin Manolache Subject: Re: default JAAS realm for StandardEngine Date: Mon, 07 Apr 2003 07:43:50 -0700 Lines: 63 Message-ID: References: <3E90A009.6060309@apache.org> <3E9199BE.3020102@apache.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7Bit X-Complaints-To: usenet@main.gmane.org User-Agent: KNode/0.7.2 Sender: news X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N Jean-Francois Arcand wrote: > This introduce a bug because if you want to set a different Realm for > each Context, the Engine default value will override the Context one. > IMBW, but from the test I'm doing using the embedded interface, I always > received the engine one instead of the Context one. > > Why not setting the realm outside StandardEngine? We will still supports > JAAS as default. I preffer to minimize the ammount of settings to get a default config. IMO what needs to be fixed is the overriding - you should be able to override per context ( i.e. context should override ). I'll try to fix it - the docs and the code seemed to suggest that Context overrides Engine, not the other way. How are you testing the realm with the embeded interface ? Are you using "run" or "run2" ( first uses server.xml - the second is the real one with only JMX ). I don't think setting the Realm on a context via JMX is implemented yet - that may be part of the problem :-) Costin > > -- Jeanfrancois > >> >>The rationale is simple - JAAS is the standard for authentication in >>java:-) And since other systems use JAAS, it would be easier to integrate >>and to develop auth modules. >> >>I don't know if we'll get to refactor the database and LDAP module to >>JAAS login modules - that would make them useable in other apps, but >>it will be a bit harder to configure. >> >>The config for JAAS may be a bit tricky - if you want to try it, >>I used: >> >>Tomcat-Standalone { >> org.apache.catalina.realm.JAASMemoryLoginModule Required >>pathname="/opt/50/conf/tomcat-users.xml" >> ; >>} >>in ~/.java.login.config >> >> >>Costin >> >> >> >> >> >>--------------------------------------------------------------------- >>To unsubscribe, e-mail: tomcat-dev-unsubscribe@jakarta.apache.org >>For additional commands, e-mail: tomcat-dev-help@jakarta.apache.org >> >> >> >> --------------------------------------------------------------------- To unsubscribe, e-mail: tomcat-dev-unsubscribe@jakarta.apache.org For additional commands, e-mail: tomcat-dev-help@jakarta.apache.org