You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@tomcat.apache.org by bu...@apache.org on 2003/03/12 09:25:09 UTC

DO NOT REPLY [Bug 17908] New: - JDBCRealm getPassword() unimplemented

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG 
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://nagoya.apache.org/bugzilla/show_bug.cgi?id=17908>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND 
INSERTED IN THE BUG DATABASE.

http://nagoya.apache.org/bugzilla/show_bug.cgi?id=17908

JDBCRealm getPassword() unimplemented

           Summary: JDBCRealm getPassword() unimplemented
           Product: Tomcat 4
           Version: 4.1.18
          Platform: Other
        OS/Version: Windows NT/2K
            Status: NEW
          Severity: Major
          Priority: Other
         Component: Catalina
        AssignedTo: tomcat-dev@jakarta.apache.org
        ReportedBy: uddhav_shirname@persistent.co.in
                CC: tomcat-dev@jakarta.apache.org


I was unable to authenticate using digest authentication scheme. I have 
unencrypted passwords stored in database. I browsed through the code and found 
that getPassword()(and getPrincipal) method in JDBCRealm returns null 
(harcoded). Following is the configuration I am using
  server.xml:
  ----------
      <Realm
         className="org.apache.catalina.realm.JDBCRealm"
         debug="99"
         digest="MD5"
         driverName="oracle.jdbc.driver.OracleDriver"
         connectionURL="jdbc:oracle:thin:@lohgad:1521:dsoft"
         connectionName="uddhav"
         connectionPassword="uddhav"
         userTable="tab_users"
         userNameCol="user_name"
         userCredCol="user_pass"
         userRoleTable="tab_user_roles"
         roleNameCol="role_name" />

   web.xml:
   ---------
<login-config>
        <auth-method>DIGEST</auth-method>
        <realm-name>OnJava Application</realm-name>
    </login-config>



I modified my local copy of JDBCRealm to include implementations of getPassword
() and getPrincipal(). These return the correct values now.

Was this left unimplemented with a purpose?

---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-dev-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-dev-help@jakarta.apache.org