hultz [mailto:[EMAIL PROTECTED]
Sent: Tuesday, May 06, 2008 3:06 PM
To: Tomcat Users List
Subject: Re: JAAS authenticated user fails authorization check
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Robin,
Robin Coe wrote:
| Problem is, the GenericPrincipal class is in the Catalina jar, which
| i
, it's been very valuable.
Robin.
-Original Message-
From: Christopher Schultz [mailto:[EMAIL PROTECTED]
Sent: Monday, May 05, 2008 11:16 PM
To: Tomcat Users List
Subject: Re: JAAS authenticated user fails authorization check
-BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Robin,
Robin C
on check
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Robin,
Robin Coe wrote:
| The Tomcat code that is failing for my auth check is
| (http://kickjava.com/src/org/apache/catalina/realm/RealmBase.java.htm):
Are you sure this is your version?
The 5.5.17 version of this file is available here:
h
t isn't fired. So it comes down to how the Catalina code base is
interpreting gp.hasRole(role). Haven't tracked down that code yet but I will.
At least, that's how it appears to me, but I am open to any fixes. :)
Robin.
-Original Message-
From: Caldarale, Charles R [mailt
7644527 [http-9808-Processor24] DEBUG
org.apache.catalina.realm.JAASRealm - Checking Principal "CN=Robin
Coe,OU=Active,OU=Users,OU=Kaleidescape,DC=nextnewgig,DC=com"
[com.kaleidescape.logdb.webapp.security.auth.UserPrincipal]
2008-05-05 13:08:53,000 7644528 [http-9808-Processor24
I have written a JAAS-enabled web-app that successfully uses my LDAP service to
authenticate a user and populate the Subject with several Principals. I have
set up my web-app to use FORM based authentication and can successfully use
request.isUserInRole("rolename") to authorize my user against
