Am 2019-05-20 um 21:35 schrieb Nacho Ganguli:
My last attempt used Spring Security JEE pre-authentication filters. This
works as I would like "provided" that I only use basic auth and tomcat's
default realm (tomcat-users.xml).
As soon as I introduce form-based auth, it does not work and I am prompted
to authenticate a second time. The log files shows "RunAsManager did not
change Authentication object"
If anyone has some suggestions or can recommend an alternate approach, it
would really help me.
Does form-based auth work w/o Spring Security properly? If yes, there
must be a bug in security:jee, you should debug that. I had to debug
this many many times due to a lot of issues with security:jee.
See [1] the attention admonition, you may suffer from one of those.
Michael
[1] http://tomcatspnegoad.sourceforge.net/spring-security.html
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
