You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@tomcat.apache.org by bu...@apache.org on 2003/01/20 13:39:21 UTC

DO NOT REPLY [Bug 16253] New: - Security roles in web.xml do not work with IIS

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG 
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://nagoya.apache.org/bugzilla/show_bug.cgi?id=16253>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND 
INSERTED IN THE BUG DATABASE.

http://nagoya.apache.org/bugzilla/show_bug.cgi?id=16253

Security roles in web.xml do not work with IIS

           Summary: Security roles in web.xml do not work with IIS
           Product: Tomcat 4
           Version: 4.1.18
          Platform: PC
        OS/Version: Windows NT/2K
            Status: NEW
          Severity: Normal
          Priority: Other
         Component: Connector:Coyote JK 2
        AssignedTo: tomcat-dev@jakarta.apache.org
        ReportedBy: ari.suutari@syncrontech.com


Security roles do not work in web.xml when using tomcat
with Coyote JK2 connector and Microsoft IIS. We are
using IIS to perform the authentication because the
target environment has requirement for NTML authentication
(we have request.tomcatAuthentication=false in jk2.properties).

IIS authenticates user OK and the authenticated username is visible
tomcat as expected. However, it is impossble to assign any
roles to this user. The Coyote JK2 connector DLL seems to
retrieve windows group names - one might imagine that
those are for role names. But no, on code in java side
seems to process them. Also, using Realms doesn't work since
they don't do role processing when Principal is not
created with them.

--
To unsubscribe, e-mail:   <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>