Win a copy of The Way of the Web Tester: A Beginner's Guide to Automating Tests this week in the Testing forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Providing Security to a Web Component (WAR)

Mike Curwen
Ranch Hand
Posts: 3695
IntelliJ IDE Java Ubuntu
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi everyone,

I have almost finished deploying my application, but there is one outstanding issue that is driving me a bit mental.

We're using iPlanet 6.0 SP2 on Solaris with Oracle8i and Netscape LDAP.

We set everything up properly as far as we know, regarding communication between iPlanet and LDAP.. for instance, during deployment, when we are asked to map a security role to a LDAP user or group, the list includes our specially created group and user. So it must be *seeing* LDAP.

What happens is this: In Internet Explorer we are kicked out immediately with :
But in Netscape Navigator, we do get a dialog prompt for user name and pasword.

(It's worth noting that in the background... the servlet init method begins to run... but stops with no error message after a certain point; there is a LOT happening in the init method, so we can safely say it runs for several seconds but does not complete. We know it's not an error in this method, because it runs to completion if we remove security. Anyways...)

Netscape prompts for the username and password, but when supplied with a correct login, it fails us. If we cancel, we get the 401 error, but otherwise, it keeps asking for username/password, over and over again.

This is a very frustrating error and we have no idea what the problem is.

Has anyone run across J2EE security settings that were ornery and churlish, or is that just me after 2 days of trying to get it to work?

I'd like to hear from anyone, not just iPlanet people (seeing as how there are so few of us).

[This message has been edited by Mike Curwen (edited July 26, 2001).]
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic