You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@tomcat.apache.org by sc...@apache.org on 2020/05/15 14:00:59 UTC
[tomcat] branch 8.5.x updated: Clarify how to set an authenticated
principal using tomcatAuthentication="false".
This is an automated email from the ASF dual-hosted git repository.
schultz pushed a commit to branch 8.5.x
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/8.5.x by this push:
new 7393b00 Clarify how to set an authenticated principal using tomcatAuthentication="false".
7393b00 is described below
commit 7393b00780838e5735d9d482409a290931e7c0e2
Author: Christopher Schultz <ch...@christopherschultz.net>
AuthorDate: Fri May 15 09:56:56 2020 -0400
Clarify how to set an authenticated principal using
tomcatAuthentication="false".
---
webapps/docs/config/ajp.xml | 8 +++++---
1 file changed, 5 insertions(+), 3 deletions(-)
diff --git a/webapps/docs/config/ajp.xml b/webapps/docs/config/ajp.xml
index 9d10525..b7afdd4 100644
--- a/webapps/docs/config/ajp.xml
+++ b/webapps/docs/config/ajp.xml
@@ -538,9 +538,11 @@
<attribute name="tomcatAuthentication" required="false">
<p>If set to <code>true</code>, the authentication will be done in Tomcat.
Otherwise, the authenticated principal will be propagated from the native
- webserver and used for authorization in Tomcat. Note that this principal
- will have no roles associated with it.
- The default value is <code>true</code>. If
+ webserver and used for authorization in Tomcat. </p>
+ <p>The web server must send the user principal (username) as a request
+ <i>attribute</i> named <code>REMOTE_USER</code>.</p>
+ <p>Note that this principal will have no roles associated with it.</p>
+ <p>The default value is <code>true</code>. If
<code>tomcatAuthorization</code> is set to <code>true</code> this
attribute has no effect.</p>
</attribute>
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org