container-auth vs servlet-auth role-checking?

Discussion in 'Java' started by Mark Chai, Oct 1, 2003.

  1. Mark Chai

    Mark Chai Guest

    dear all,

    has anyone managed to set the user Principal in a http session using
    servlet-authentication? this is easy to do for container-based auth, but
    it's not flexible enough for a custom authentication and authorization
    module I'm creating.

    the only problem is that I cannot set a Principal into the http session and
    thus cannot use the typical code for checking role authorization, i.e.
    isUserInRole() for Resin or hasRole() functions in Tomcat?

    TIA,
    Mark
    m.chai(at)ieee.org
    Mark Chai, Oct 1, 2003
    #1
    1. Advertising

  2. Mark Chai wrote:

    > dear all,
    >
    > has anyone managed to set the user Principal in a http session using
    > servlet-authentication? this is easy to do for container-based auth, but
    > it's not flexible enough for a custom authentication and authorization
    > module I'm creating.
    >
    > the only problem is that I cannot set a Principal into the http session
    > and thus cannot use the typical code for checking role authorization, i.e.
    > isUserInRole() for Resin or hasRole() functions in Tomcat?
    >
    > TIA,
    > Mark
    > m.chai(at)ieee.org


    no, programmatic login unfortunately doesn't work with tomcat.

    --
    mvg,
    Christophe Vanfleteren
    Christophe Vanfleteren, Oct 1, 2003
    #2
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Jesper Stocholm
    Replies:
    2
    Views:
    8,071
    John Saunders
    Aug 23, 2003
  2. Liet Kynes
    Replies:
    0
    Views:
    476
    Liet Kynes
    Nov 26, 2003
  3. circuit_breaker
    Replies:
    2
    Views:
    1,989
    Jack Jia
    Apr 4, 2004
  4. Patrick Olurotimi Ige

    Role Based Forms Auth with Active Directory

    Patrick Olurotimi Ige, Dec 29, 2004, in forum: ASP .Net Security
    Replies:
    7
    Views:
    169
    Patrick Olurotimi Ige
    Mar 20, 2005
  5. Kursat
    Replies:
    1
    Views:
    302
    Dominick Baier
    May 7, 2007
Loading...

Share This Page