Gabe Wong wrote:
>
>
> Since the hasRole is being called, can you not do a super.hasRole
> against the stripped user name of the Principal.
> If so won't that suffice?
>
>
Gabe,
Yeah, I was thinking that. The hasRole though takes two parameters... a
Principal and the role name. I could
Gabe Wong wrote:
>
> I guess I misunderstood your objective. You are not interested in
> manipulating the user name.
> You just want to check if the stripped user name is in a specific role?
>
Gabe,
Yeah, I guess that sums it up better than my original post. I thought that
maybe if I could j
mgainty wrote:
>
> NAMES: You cannot change to any names unknown to your (NTLM)
> authentication
> algorithm
> http://tomcat.apache.org/tomcat-5.5-doc/catalina/docs/api/org/apache/catalin
> a/realm/RealmBase.html#authenticate(java.lang.String,%20java.lang.String)
>
> Martin
>
>
Martin,
Than
Gabe Wong wrote:
>
> I believe as the user is already authenticated via IIS, the authenticate
> method is not called in this situation.
> So you may try overriding:
> protected Principal getPrincipal(String username)
>
Gabe,
Thanks for sticking with this. I did try getPrincipal as well and i
Gabe Wong wrote:
>
> Could be how logging output is setup. The constructor may be created
> before output gets redirected elsewhere.
> Look in the other log files under the logs directory. Also is the realm
> configured in server.xml or context.xml?
>
>
Gabe,
Here's the thing. I also added
Gabe Wong wrote:
>
>
> Check the syntax as it was just done on the fly.
>
>
Here's the latest. I created a class that extends JNDIRealm and I can see
some debug messages in my constructor, but I don't see my authenticate
method getting invoked. I just wanted to see if I could override the
a
markt-2 wrote:
>
>
> Haven't tried it but you should be able to create a custom Realm by
> extending the existing JNDIRealm and manipulating the user name, probably
> by overriding the authenticate() methods.
>
>
Ok, thanks Mark... that gives me a place to start.
--
View this message in co
Hi,
I am using Tomcat 5.5 and have successfully setup a Realm containing
users/groups from my Active Directory domain. I can login (to the /manager
app, for example) with no problem. Now, I would like to use IIS and NTLM
authentication so the user is not prompted for login. I have unchecked th
