JAAS + SERVET + NT PDC

B

Bob Rivers

Hi,

I am trying to develop a servlet to do authentication against a
Windows NT PDC.

In fact, I already did it. But I am facing a problem:

My servlet returns the user that is running the tomcat process, not
the user that really called the page (jsp).

What I need to do (maybe someone has another option) is: Supose that
the user is already logged in (the first thing that he did when he
arrived in the office) on a Win NT PDC.

So, this users opens a browser and types the URL of an application.
This application must catch the user id (the one that he used to
login) and then check if this login has rights over the application
that he/she is trying to use.

TIA,

Bob
 
E

Eric

What I need to do (maybe someone has another option) is: Supose that
the user is already logged in (the first thing that he did when he
arrived in the office) on a Win NT PDC.

So, this users opens a browser and types the URL of an application.
This application must catch the user id (the one that he used to
login) and then check if this login has rights over the application
that he/she is trying to use.
Click to expand...

This is effectively how IIS's "Integrated Windows Authentication" works
(via either the NTLM or Negotiate (SPNEGO) HTTP auth mechanisms).

The jCIFS servlet filter performs transparent NTLM authentication of a
web application against an NT domain:

http://jcifs.samba.org

This will only work with web browsers supporting NTLM -- including
Internet Explorer and recent Mozilla builds.

Eric
 
E

Eric

Eric said:
This is effectively how IIS's "Integrated Windows Authentication" works
(via either the NTLM or Negotiate (SPNEGO) HTTP auth mechanisms).

The jCIFS servlet filter performs transparent NTLM authentication of a
web application against an NT domain:

http://jcifs.samba.org

This will only work with web browsers supporting NTLM -- including
Internet Explorer and recent Mozilla builds.

Eric
Click to expand...

....and, if you're interested, here is a description of the
authentication protocol employed by the NTLM scheme:

http://davenport.sourceforge.net/ntlm.html


Eric
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

JAAS 1
Jaas authentication 2
JAAS good for RBAC? 2
cross domain single sign-on with JAAS 1
How to Access Subject after JAAS LoginModule? 2
Problem with a login script, SESSION user rights and put this together so it works with the other pages and MySQL. Code examples. 2
Using JAAS for JBoss portlet authentication 0
Java Application 1

Members online

No members online now.
Total: 18 (members: 0, guests: 18)
Robots: 150

Forum statistics

Threads
473,776
Messages
2,569,603
Members
45,189
Latest member
CryptoTaxSoftware

Latest Threads

Top