Hi Cris,
For what it's worth, I am not a big fan of these frequent releases of
Java by Oracle. One can barely get one's head around Java version 'X' then
Java version 'Y' is out...
Tony
-Original Message-
From: Berneburg, Cris J. - US [mailto:cberneb...@caci.com]
Sent: Monday
nd rejecting it), although the app's web.xml contains no directives to that
effect.
On 15.10.2018 16:01, Tony Esposito wrote:
> Hello André,
>Yes, you understand the issue correctly.
>Once again an excellent explanation.
>
>Using grep -rnw '/opt/apache-tom
give 1 (or maybe both) a try.
Thank you.
Tony
-Original Message-
From: André Warnier (tomcat) [mailto:a...@ice-sa.com]
Sent: Sunday, October 14, 2018 3:58 PM
To: users@tomcat.apache.org
Subject: Re: Tomcat 8 and authenticating Basic Auth users
On 14.10.2018 18:44, Tony Esposito wrote:
&
October 14, 2018 5:55 AM
To: users@tomcat.apache.org
Subject: Re: Tomcat 8 and authenticating Basic Auth users
On 14.10.2018 02:29, Tony Esposito wrote:
> Hello André,
>
> It's routed through a server...
> A co-worker noticed a Tomcat valve that might do the trick...
> https://gith
er 13, 2018 4:38 PM
To: users@tomcat.apache.org
Subject: Re: Tomcat 8 and authenticating Basic Auth users
On 13.10.2018 18:54, Tony Esposito wrote:
> Hello André,
>
> Thank you for taking the time to put together this excellent explanation.
>
> I do not have control over the server th
cat.apache.org
Subject: Re: Tomcat 8 and authenticating Basic Auth users
On 13.10.2018 04:56, Tony Esposito wrote:
> But you still want your application to see this Basic Auth header, because it
> needs to check the "standard password" in it, right ?
> (Otherwise, describe precisely what
t) [mailto:a...@ice-sa.com]
Sent: Friday, October 12, 2018 6:54 PM
To: users@tomcat.apache.org
Subject: Re: Tomcat 8 and authenticating Basic Auth users
On 13.10.2018 00:04, Tony Esposito wrote:
> Addendum:
> The user "myuser" attempts to authenticate once, fails, and on the seco
asic Auth (that is received in the header).
Tony
-----Original Message-
From: Tony Esposito
Sent: Friday, October 12, 2018 4:42 PM
To: Tomcat Users List
Cc: Tony Esposito
Subject: RE: Tomcat 8 and authenticating Basic Auth users
Hi Christopher,
The 'web server in question&
ch...@christopherschultz.net]
Sent: Friday, October 12, 2018 3:33 PM
To: users@tomcat.apache.org
Subject: Re: Tomcat 8 and authenticating Basic Auth users
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Tony,
On 10/12/18 16:24, Tony Esposito wrote:
> Some very good feedback here. Than
t: Re: Tomcat 8 and authenticating Basic Auth users
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Tony,
On 10/12/18 15:41, Tony Esposito wrote:
> Concerning tomcat-user.xml versus database: The number of users has
> increased by an order of 2 magnitudes AND we don't know ahead of t
To: users@tomcat.apache.org
Subject: Re: Tomcat 8 and authenticating Basic Auth users
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Tony,
On 10/12/18 14:45, Tony Esposito wrote:
> Thank you André for this feedback.
>
> If I may, I wish to approach this from another angle. (The user
&g
.
(The application does more security checking and authentication on the header.)
So the question becomes:
How to disable Basic Auth when the header contains a password which is static
for all users requesting access?
Tony Esposito
Sr. ETL Developer / DBA
Region 10 ESC
Technology and Data
Hello,
Using Tomcat 8.0.22 on Linux CentOS 6.10:
Trying to setup Tomcat to authenticate users that use Basic
Auth.
I could (possibly) enter these users into the tomcat-users.xml
file but we are dealing with 1000 potential users.
Wh
13 matches
Mail list logo
