Bertrand Baesjou wrote: > However for the authorization part we want to use different roles a > client can have (3 roles in our case). For this part we also want to use > certificates (preferably the same as in the authorization ones, but not > sure if that is possible or even good-practice).
Tomcat supports certificates and roles. See the servlet spec for how to configure your web application. http://java.sun.com/products/servlet/reference/api/index.html > I found some stuff about Realm > (http://tomcat.apache.org/tomcat-5.5-doc/realm-howto.html) but it seems > to me that is mainly username/password based. Also found the jguard > project ( http://jguard.net/ ) which seems to be able to handle > certificates. See http://tomcat.apache.org/tomcat-5.5-doc/ssl-howto.html for how to set up SSL. The key to getting CLIENT-CERT working is making sure you use the correct username correct. This thread from the archives should help: http://marc.theaimsgroup.com/?l=tomcat-user&m=107963922404774&w=2 Just be careful as the connector configuration used in my examples is now deprecated. HTH, Mark --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
