-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Kamil,
On 9/25/13 8:49 AM, attr wrote: > Is it possible to authenticate a user against one realm (i.e.: > LDAP) but authorize (obtain roles the user belongs to) against > another realm (i.e. database)? I'm interested in the use case, here: why would you /want/ to do this separately? > Any other solutions than writing an error-prone homegrown one that > will allow to keep users in one realm, user roles in the other > realm and still be able to use container-managed authentication > with authorization. Tomcat does not ship with anything like this out of the box. - -chris -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.14 (Darwin) Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQIcBAEBCAAGBQJSQ0vNAAoJEBzwKT+lPKRYH0YQAJbZyIxd1wZdXT8xZwyTWigx Irz+kkvLCN9dhjdSxLWhQH1fwT6WcCJhyyI9+LWtwYopiwKU8CHx4UetH8R7ZqEO Y9EqhfbkArnstfuPuDsya7Nd57wS0QsBFi2TqgsF+4hzjqU7OL0C1Ce9gbCDM/aO USEu+GInEkTG4WVAzL2J11sXpg8tP+hmAO/uQnQIhrl3NNPWKK0JunuNfABhYXVe HXd0FiU93owE58BGp+bGkfBSvFAYYoiklEQPXFNlIK/4SGbQ7J4kOeEeMEGEX8JC voKzrTloR0fvVLXE/+8Zblv2mniXyZxlSQtpA8dCkW2ssRxjfZSH64AvJAzxgkkh Zwza9C3MfNDU7I7iD++HM3UNh/GhcZwvgJHhZq3Ysu5g+LpBWKty1LdOjpEZOrcC 4XziLGMoDgWPGaK64wRc7hXBrZDvCsskwCltfzM4ck49IsOKrIJslKjr4p8lyEnX dlMDHJO40kGHaJSQ5wYI/LNeYFusoYUx00bq7Clt8+AUIQIU1GeCcTKSa/186noT PhJpsBir/NL3Oob0iZsbF080MlniSCCocaFhr1+6yNS2YzIuR/FecuHk1kFwImI4 DCiAzgC5UwNm5w9HhdDr5QEnfCrDyXQhrDW9s6xY6ccraJBLvC8+SAQTGD2U7FXY m1PqtVx3lCtnn3HmgA5p =X5cC -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org