I would like to know if there is a way to define security constraints and user roles (as though I were using a Realm) in the web.xml, and then programmatically Authenticate users via a pre-existing authentication mechanism already written in the web application, without using a Realm.
I am taking over development of an existing Tomcat web application. There is already an application level scheme for authenticating users via a login page and stored login/password in a relational database. However, access control was poorly implemented across the JSP's. I cannot use JDBCRealm without making significant changes to the database schema and, subsequently, the application code. If there is some way to provide proper access control (preferably at the container level) using my existing authentication mechanism, I would love to hear about it. Thanks! -Jaime --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
