You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by Lisa Tan <ag...@wayne.edu> on 2007/08/03 16:58:32 UTC
RE: Failed Authentication
I am trying to set up Tomcat form based authentication and received the
following error.
Failed authenticate() test ??/j_security_check -
org.apache.catalina.authenticator.AuthenticatorBase [20070802]
What I have done is:
a). in $TOMCAT/conf/server.xml, I add JNDIRealm <Realm
className="org.apache.catalina.realm.JNDIRealm"
debug='55'
connectionURL="ldap://xxx:xxx"
userBase="ou=People,dc=example,dc=edu"
userSearch="(uid={0})"
/>
b). in tomcat WEB-INF/web.xml, I add security and login blocks
<security-constraint>
<web-resource-collection>
<web-resource-name>tracker</web-resource-name>
<url-pattern>*.jsp</url-pattern>
<http-method>GET</http-method>
<http-method>POST</http-method>
</web-resource-collection>
<!-- Security roles referenced by this web application -->
<security-role>
<description>All Users</description>
<role-name>person</role-name>
</security-role>
</security-constraint>
<login-config>
<auth-method>FORM</auth-method>
<realm-name>ldapRealm</realm-name>
<form-login-config>
<form-login-page>/login.jsp</form-login-page>
<form-error-page>/login_error.jsp</form-error-page>
</form-login-config>
</login-config>
c). create login.jsp and login_error.jsp and put them in the web-app's
document root
<form action="j_security_check" method="POST">
LDAP Authentication<BR>
<strong>Enter UserId</strong><br>
<input type="text" name="j_username" size="22">
<br>
<strong>Enter Password</strong><br>
<input type="password" name="j_password" size="22">
<input type="submit" name="Submit" value="Submit">
</form>
login_error.jsp can be as simple as:
<html>
<body>
The system was not able to log you in.<br>
<form>
<input type="button" onclick="history.go(-1)" value="Retry"/>
</form>
</body>
</html>
Any directions will appreciate. Thanks,
Lisa
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org