You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@tomcat.apache.org by sc...@apache.org on 2020/05/15 14:00:10 UTC
[tomcat] branch 9.0.x updated: Clarify how to set an authenticated
principal using tomcatAuthentication="false".
This is an automated email from the ASF dual-hosted git repository.
schultz pushed a commit to branch 9.0.x
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/9.0.x by this push:
new dfba434 Clarify how to set an authenticated principal using tomcatAuthentication="false".
dfba434 is described below
commit dfba4345c120f461b028d58271eb53aa4d26114b
Author: Christopher Schultz <ch...@christopherschultz.net>
AuthorDate: Fri May 15 09:56:56 2020 -0400
Clarify how to set an authenticated principal using
tomcatAuthentication="false".
---
webapps/docs/config/ajp.xml | 8 +++++---
1 file changed, 5 insertions(+), 3 deletions(-)
diff --git a/webapps/docs/config/ajp.xml b/webapps/docs/config/ajp.xml
index 5b20d6f..2d4fa42 100644
--- a/webapps/docs/config/ajp.xml
+++ b/webapps/docs/config/ajp.xml
@@ -534,9 +534,11 @@
<attribute name="tomcatAuthentication" required="false">
<p>If set to <code>true</code>, the authentication will be done in Tomcat.
Otherwise, the authenticated principal will be propagated from the native
- webserver and used for authorization in Tomcat. Note that this principal
- will have no roles associated with it.
- The default value is <code>true</code>. If
+ webserver and used for authorization in Tomcat. </p>
+ <p>The web server must send the user principal (username) as a request
+ <i>attribute</i> named <code>REMOTE_USER</code>.</p>
+ <p>Note that this principal will have no roles associated with it.</p>
+ <p>The default value is <code>true</code>. If
<code>tomcatAuthorization</code> is set to <code>true</code> this
attribute has no effect.</p>
</attribute>
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org