You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@tomcat.apache.org by David Rodríguez Fernández <d-...@chronoexpres.com> on 2007/02/02 09:37:19 UTC

RE: authentication using active directory

Can tomcat read the file login.html? I think this is a permissions problem.

-----Mensaje original-----
De: Deepan [mailto:codeshepherd@gmail.com] 
Enviado el: viernes, 26 de enero de 2007 8:22
Para: Tomcat Users List
Asunto: authentication using active directory

Hi,
 I am trying to authenticate using Active directory for one my application
in tomcat. ( I have only one application deployed in tomcat). 

I had configured server.xml and web.xml to use /gridsphere/login.html to get
details from user and authenticate using AD. When i hit the url
"localhost:8080", i get 404 error, saying "The requested resource
(/gridsphere/login.html) is not available. " 




-----------------------------------------------------------
server.xml 

<Realm className="org.apache.catalina.realm.JNDIRealm" debug="99"

connectionURL="ldap://172.168.1.1:389"
connectionName="tomcatuser@gs.novaglobal.com.sg"
connectionPassword="xxxxxxxx"
referrals="follow"
userRoleName="member"
roleSearch="(member={0})"
roleSubtree="false"
userSubtree="true"
/>

--------------------------------------------------------------

web.xml


<security-constraint>
        <web-resource-collection>
                <web-resource-name>YourWebApp</web-resource-name>
                <description> accessible by authenticated users of the
tomcat role</description>
                <url-pattern>/*</url-pattern>
                <http-method>GET</http-method>
                <http-method>POST</http-method>
                <http-method>PUT</http-method>
                <http-method>DELETE</http-method>
        </web-resource-collection>
        <auth-constraint>
                <description>These roles are allowed access</description>
                <role-name>tomcat</role-name>
        </auth-constraint>
</security-constraint>

<login-config>
        <auth-method>FORM</auth-method>
        <realm-name>YourWebApp Protected Area</realm-name>
        <form-login-config>

<form-login-page>/gridsphere/index.html</form-login-page>

<form-error-page>/gridsphere/autherr.html</form-error-page>
        </form-login-config>
</login-config>

<security-role>
        <description>Only 'tomcat' role is allowed to access this web
application</description>
        <role-name>tomcat</role-name>
</security-role>



---------------------------------------------------------------------





--
-----------------------------------------------
Regards
Deepan Chakravarthy N
http://www.codeshepherd.com/
http://sudoku-solver.net/

I am a programmer by day,
I dig grave for other programmers by night.


---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe,
e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org





----------------------------------------------------------------------

La Información incluida en el presente correo electrónico es SECRETO
PROFESIONAL Y CONFIDENCIAL, siendo para el uso exclusivo del
destinatario arriba mencionado. Si usted lee este mensaje y no es el
destinatario señalado, el empleado o el agente responsable de entregar
el mensaje al destinatario, o ha recibido esta comunicación por error,
le informamos que esta totalmente prohibida cualquier divulgación,
distribución o reproducción de esta comunicación, y le rogamos que nos
lo notifique inmediatamente y nos devuelva el mensaje original a la
dirección arriba mencionada.

Gracias.

The information contained in this e-mail is LEGALLY PRIVILEDGED AND
CONFIDENTIAL and is intended only for the use of the addressee named
above. If the reader of this message is not the intended recipient or
the employee or agent responsible for delivering the message to the
intended recipient, or you have received this communication in error,
please be aware that any dissemination, distribution or duplication of
this communication is strictly prohibited, and please notify us
immediately and return the original message to us at the address above.

Thank you.



---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org

RE: authentication using active directory

Posted by Deepan <co...@gmail.com>.

On Fri, 2007-02-02 at 09:37 +0100, David Rodríguez Fernández wrote:
> Can tomcat read the file login.html? I think this is a permissions problem.
> 

I am using BASIC mode of authentication. It works. 


> -----Mensaje original-----
> De: Deepan [mailto:codeshepherd@gmail.com] 
> Enviado el: viernes, 26 de enero de 2007 8:22
> Para: Tomcat Users List
> Asunto: authentication using active directory
> 
> Hi,
>  I am trying to authenticate using Active directory for one my application
> in tomcat. ( I have only one application deployed in tomcat). 
> 
> I had configured server.xml and web.xml to use /gridsphere/login.html to get
> details from user and authenticate using AD. When i hit the url
> "localhost:8080", i get 404 error, saying "The requested resource
> (/gridsphere/login.html) is not available. " 
> 
> 
> 
> 
> -----------------------------------------------------------
> server.xml 
> 
> <Realm className="org.apache.catalina.realm.JNDIRealm" debug="99"
> 
> connectionURL="ldap://172.168.1.1:389"
> connectionName="tomcatuser@gs.novaglobal.com.sg"
> connectionPassword="xxxxxxxx"
> referrals="follow"
> userRoleName="member"
> roleSearch="(member={0})"
> roleSubtree="false"
> userSubtree="true"
> />
> 
> --------------------------------------------------------------
> 
> web.xml
> 
> 
> <security-constraint>
>         <web-resource-collection>
>                 <web-resource-name>YourWebApp</web-resource-name>
>                 <description> accessible by authenticated users of the
> tomcat role</description>
>                 <url-pattern>/*</url-pattern>
>                 <http-method>GET</http-method>
>                 <http-method>POST</http-method>
>                 <http-method>PUT</http-method>
>                 <http-method>DELETE</http-method>
>         </web-resource-collection>
>         <auth-constraint>
>                 <description>These roles are allowed access</description>
>                 <role-name>tomcat</role-name>
>         </auth-constraint>
> </security-constraint>
> 
> <login-config>
>         <auth-method>FORM</auth-method>
>         <realm-name>YourWebApp Protected Area</realm-name>
>         <form-login-config>
> 
> <form-login-page>/gridsphere/index.html</form-login-page>
> 
> <form-error-page>/gridsphere/autherr.html</form-error-page>
>         </form-login-config>
> </login-config>
> 
> <security-role>
>         <description>Only 'tomcat' role is allowed to access this web
> application</description>
>         <role-name>tomcat</role-name>
> </security-role>




---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org