Hello Tomcat user group.
I am setting update Tomcat 8.5.23 with Kerberos/SPNEGO. Since the Tomcat
server will be only hosting one web application and we only want SPNEGO
only on certain environments we were trying to add security contraints to
Tomcat's web.xml instead of the application's web.xml
.
I also think a Tomcat patch/feature to implement a new Realm for
SPNEGO/CLIENT-CERT is a good idea. +1
Thanks again for your help!
Randy
> On Apr 25, 2018, at 6:51 AM, Mark Thomas wrote:
>
> On 25/04/18 03:29, Randy Oun wrote:
>> Thanks Mark. I adjusted the web.xml for the
Thanks for the quick reply Mark. I expected your answers but wasn't sure
if they were capabilities unware to me that could help.
Randy
On Thu, Apr 26, 2018, 1:18 PM Mark Thomas wrote:
> On 26/04/18 18:30, Randy Oun wrote:
>
> > Questions:
> > -Are there any known T
Hello Tomcat Users community, currently I have an application hosted in
Tomcat 8.5.23 that is getting connect resets when calling a web service.
Network traces show that duplicate headers in the web service request (see
below) and probable cause. The application devs are not seeing where their
co
7-Apr-2018 11:15:25.407 FINE
[https-jsse-nio-8443-exec-7]
org.apache.catalina.realm.CombinedRealm.authenticate Failed to authenticate
user [u...@domain.org] with realm
What other info can I provide?
On Tue, Apr 24, 2018 at 7:51 AM Mark Thomas wrote:
> On 23/04/18 12:27, Randy Oun wrote:
>
Currently I'm configuring Tomcat 8.5 with Integrated Windows
Authentication/SPNEGO and have a question on proper roles in security
and auth contraints. I have completed the instructions in the
Integrated Windows Authentication doc
(https://tomcat.apache.org/tomcat-8.5-doc/windows-auth-howto.html)
