On Fri, 11 Oct 2002, Externo wrote:
>
> Hello, I didn't get a response to this question on tomcat-user
> so I'll give it a try here. Sorry, I write you as a last resort. Apparently,
> nobody know about this.
>
The username is available (if you successfully logged in) via
request.getRemoteUser(), but the password is not available.. If login
failed, there is no portable mechanism to acquire the username or
password. There is also no portable mechanism to build a "3 strikes and
you are out" mechanism.
To implement anything like that, you'd need to modify Tomcat's
authenticator classes (and, of course, become container dependent).
Craig
--
To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
