-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Thomas,
On 3/29/12 12:29 PM, Thomas Strauß wrote: > The application provides it’s own realm, that is valid for the > whole server (configured in server.xml). The realm is based on > datasource realm. Can you describe the changes in behavior that your own DataSourceRealm subclass provides? > The application provides request listeners that rely on the > request.getPrincipal() method to obtain the logged on user. That seems reasonable. > The request listener authenticates a service framework with the > principal from the request. Ok. > In Tomcat 7.0.26 this approach fails, because the requestlistener > can no longer obtain the principal using request.getPrincipal(). > The call returns null. A webpage (jsp) called after the listener as > target of the request can obtain the principal from the request as > expected. So your listener seems to see null, but a JSP later in the call sequence *can* see the Principal? Or do you mean later in the flow? IIRC, something changed with getPrincipal returning null when no security constraint was in effect, but I can't seem to find it in the changelog. Have you read the changelog? That's a lot of versions to skip, and lots of stuff has been fixed/updated. - -chris -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.17 (Darwin) Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk90zO0ACgkQ9CaO5/Lv0PBIqwCgkG7AGPFMvoxgvblL2BcgSRI7 O8oAnjY9aCdvEqlSdnk64ESct7eEde5O =hX94 -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
