DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://nagoya.apache.org/bugzilla/show_bug.cgi?id=12335>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.
http://nagoya.apache.org/bugzilla/show_bug.cgi?id=12335 Problem with Bug 4352 also exists with the JNDIRealm Summary: Problem with Bug 4352 also exists with the JNDIRealm Product: Tomcat 4 Version: 4.1.9 Platform: All OS/Version: All Status: NEW Severity: Major Priority: Other Component: Catalina AssignedTo: [EMAIL PROTECTED] ReportedBy: [EMAIL PROTECTED] As reported in Bug 4352 the getPrincipal method always returns null for the JDBCRealm. This method (getPrinicipal()) is used by the RealmBase class when it authenticates using the X509Certificate authenticate method. The fix would be to do something similar to what mod_authz does and look up the DN (which is passed to the getPrincipal() method) to look up the user in the LDAP store and then verify that the account has not expired. This would map the remote user, I believe it will also allow the roles methods to work. -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
