You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@tomcat.apache.org by bu...@apache.org on 2002/08/14 02:17:02 UTC

DO NOT REPLY [Bug 11678] New: - JNDIRealm times out/prompts for password with BASIC authentication

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG 
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://nagoya.apache.org/bugzilla/show_bug.cgi?id=11678>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND 
INSERTED IN THE BUG DATABASE.

http://nagoya.apache.org/bugzilla/show_bug.cgi?id=11678

JNDIRealm times out/prompts for password with BASIC authentication

           Summary: JNDIRealm times out/prompts for password with BASIC
                    authentication
           Product: Tomcat 4
           Version: 4.1.9
          Platform: Sun
        OS/Version: Solaris
            Status: NEW
          Severity: Normal
          Priority: Other
         Component: Catalina
        AssignedTo: tomcat-dev@jakarta.apache.org
        ReportedBy: jemiller@uchicago.edu


I noticed that if you protect a resource using JNDIRealm and BASIC 
authentication after you are prompted for user name and password and 
successfully authenticate, if you wait awhile and then refresh the page (or 
view another page that is protected), it will prompt you for a password again. 
It appears to time out after about 2 or 3 minutes.

I'm using Tomcat 4.1.9.

I'm using this in my server.xml,

<Realm className="org.apache.catalina.realm.JNDIRealm"
debug="99"
connectionURL="ldap://localhost:8636"
connectionName=""
connectionPassword=""
userPattern="uid={0}, ou=People, dc=uchicago, dc=edu"
userRoleName="eduPersonAffiliation"/>

and this in my web.xml,

<security-constraint>
<web-resource-collection>
<web-resource-name>Orientation Registration</web-resource-name>
<url-pattern>/servlet/OrientationRegistration</url-pattern>
<url-pattern>/servlet/OrientationRegistration/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>faculty</role-name>
<role-name>staff</role-name>
<role-name>student</role-name>
</auth-constraint>
</security-constraint>
<login-config>
<auth-method>BASIC</auth-method>
<realm-name>The University of Chicago Directory</realm-name>
</login-config>

Note, this behavior does not occur when I use MemoryRealm instead.

--
To unsubscribe, e-mail:   <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>