You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by Karel Sedlacek <kv...@cornell.edu> on 2006/02/25 23:10:48 UTC
REMOTE_USER forwarding
Is there something I need to do in order to make sure that Tomcat is
passing along REMOTE_USER? I have a Hyperion report server installation
that we want to convert to using transparent logon using delivered CGI
macros $REMOTE_USER$ and $TRUSTEDPASS$. When I reconfigure the
Authentication service to use the macros, and hit the URL protected by our
SSO mechanism the behavior appears as though REMOTE_USER is not
populated. Apache is definitely passing the header attribute as we use it
extensively on this site for non-Tomcat applications. Help! Thanks!
Karel Sedlacek kvs1@cornell.edu
CIT Data Administration Phn 607-255-7742
Cornell University Fax
607-255-1297
Ithaca, NY 14853
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
Re: REMOTE_USER forwarding
Posted by Karel Sedlacek <kv...@cornell.edu>.
Marty, David,
Thanks for the replies...
We are using a Cornell developed SSO called CUWebAuth, and adding the
tomcatAuthentication="false" directive did the trick. Transparent login
working beautifully 400 (soon to be 4000) happy users.
Thanks,
Karel
At 09:50 AM 2/26/2006, you wrote:
>In your connector config in server.xml add tomcatAuthentication="false".
>This will allow the auth info from Apache through.
>
>Karel Sedlacek wrote:
>>Is there something I need to do in order to make sure that Tomcat is
>>passing along REMOTE_USER? I have a Hyperion report server installation
>>that we want to convert to using transparent logon using delivered CGI
>>macros $REMOTE_USER$ and $TRUSTEDPASS$. When I reconfigure the
>>Authentication service to use the macros, and hit the URL protected by
>>our SSO mechanism the behavior appears as though REMOTE_USER is not
>>populated. Apache is definitely passing the header attribute as we use
>>it extensively on this site for non-Tomcat applications. Help! Thanks!
>>
>>Karel Sedlacek kvs1@cornell.edu
>>CIT Data Administration Phn 607-255-7742
>>Cornell University Fax
>>607-255-1297
>>Ithaca, NY 14853
>>
>>
>>---------------------------------------------------------------------
>>To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
>>For additional commands, e-mail: users-help@tomcat.apache.org
>
>
>--
>David Smith
>Network Operations Supervisor
>Department of Entomology
>Cornell University
>2132 Comstock Hall
>Ithaca, NY 14853
>Phone: (607) 255-9571
>Fax: (607) 255-0940
>
>
>---------------------------------------------------------------------
>To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
>For additional commands, e-mail: users-help@tomcat.apache.org
>
Karel Sedlacek kvs1@cornell.edu
CIT Data Administration Phn 607-255-7742
Cornell University Fax
607-255-1297
Ithaca, NY 14853
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
Re: REMOTE_USER forwarding
Posted by David Smith <dn...@cornell.edu>.
In your connector config in server.xml add tomcatAuthentication="false".
This will allow the auth info from Apache through.
Karel Sedlacek wrote:
> Is there something I need to do in order to make sure that Tomcat is
> passing along REMOTE_USER? I have a Hyperion report server
> installation that we want to convert to using transparent logon using
> delivered CGI macros $REMOTE_USER$ and $TRUSTEDPASS$. When I
> reconfigure the Authentication service to use the macros, and hit the
> URL protected by our SSO mechanism the behavior appears as though
> REMOTE_USER is not populated. Apache is definitely passing the header
> attribute as we use it extensively on this site for non-Tomcat
> applications. Help! Thanks!
>
> Karel Sedlacek kvs1@cornell.edu
> CIT Data Administration Phn 607-255-7742
> Cornell University Fax
> 607-255-1297
> Ithaca, NY 14853
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org
>
--
David Smith
Network Operations Supervisor
Department of Entomology
Cornell University
2132 Comstock Hall
Ithaca, NY 14853
Phone: (607) 255-9571
Fax: (607) 255-0940
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
Re: REMOTE_USER forwarding
Posted by Martin Gainty <mg...@hotmail.com>.
Good Morning Karel-
Which SSO package are you using?
Thanks,
Martin Gainty-
603-438-5053
OOA/OOD Instructor
----- Original Message -----
From: "Karel Sedlacek" <kv...@cornell.edu>
To: "Tomcat Users List" <us...@tomcat.apache.org>
Sent: Saturday, February 25, 2006 5:10 PM
Subject: REMOTE_USER forwarding
> Is there something I need to do in order to make sure that Tomcat is
> passing along REMOTE_USER? I have a Hyperion report server installation
> that we want to convert to using transparent logon using delivered CGI
> macros $REMOTE_USER$ and $TRUSTEDPASS$. When I reconfigure the
> Authentication service to use the macros, and hit the URL protected by our
> SSO mechanism the behavior appears as though REMOTE_USER is not populated.
> Apache is definitely passing the header attribute as we use it extensively
> on this site for non-Tomcat applications. Help! Thanks!
>
> Karel Sedlacek kvs1@cornell.edu
> CIT Data Administration Phn 607-255-7742
> Cornell University Fax
> 607-255-1297
> Ithaca, NY 14853
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org
>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org