You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@tomcat.apache.org by bu...@apache.org on 2002/08/14 02:17:02 UTC
DO NOT REPLY [Bug 11678] New: -
JNDIRealm times out/prompts for password with BASIC authentication
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://nagoya.apache.org/bugzilla/show_bug.cgi?id=11678>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND
INSERTED IN THE BUG DATABASE.
http://nagoya.apache.org/bugzilla/show_bug.cgi?id=11678
JNDIRealm times out/prompts for password with BASIC authentication
Summary: JNDIRealm times out/prompts for password with BASIC
authentication
Product: Tomcat 4
Version: 4.1.9
Platform: Sun
OS/Version: Solaris
Status: NEW
Severity: Normal
Priority: Other
Component: Catalina
AssignedTo: tomcat-dev@jakarta.apache.org
ReportedBy: jemiller@uchicago.edu
I noticed that if you protect a resource using JNDIRealm and BASIC
authentication after you are prompted for user name and password and
successfully authenticate, if you wait awhile and then refresh the page (or
view another page that is protected), it will prompt you for a password again.
It appears to time out after about 2 or 3 minutes.
I'm using Tomcat 4.1.9.
I'm using this in my server.xml,
<Realm className="org.apache.catalina.realm.JNDIRealm"
debug="99"
connectionURL="ldap://localhost:8636"
connectionName=""
connectionPassword=""
userPattern="uid={0}, ou=People, dc=uchicago, dc=edu"
userRoleName="eduPersonAffiliation"/>
and this in my web.xml,
<security-constraint>
<web-resource-collection>
<web-resource-name>Orientation Registration</web-resource-name>
<url-pattern>/servlet/OrientationRegistration</url-pattern>
<url-pattern>/servlet/OrientationRegistration/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>faculty</role-name>
<role-name>staff</role-name>
<role-name>student</role-name>
</auth-constraint>
</security-constraint>
<login-config>
<auth-method>BASIC</auth-method>
<realm-name>The University of Chicago Directory</realm-name>
</login-config>
Note, this behavior does not occur when I use MemoryRealm instead.
--
To unsubscribe, e-mail: <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>