Win a copy of The Little Book of Impediments (e-book only) this week in the Agile and Other Processes forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Authentication methods

 
Naren Chivukula
Ranch Hand
Posts: 577
Java Notepad Tomcat Server
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi,
Can <auth-method> in <login-config> take vendor specific authentication mechanism? If this is the case, then I don't think the web.xml is compliant with Servlet spec, as this will not be portable.

The questions are asked in Whizlabs mock exams and I have some tough time in double-checking the answers as they are NOT 100% correct.

Cheers,
Naren
 
Ulf Dittmer
Rancher
Posts: 42969
73
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
The servlet spec outlines what is and is not permissible, so any servlet container had better implement exactly that, lest it falls out of compliance.
 
Naren Chivukula
Ranch Hand
Posts: 577
Java Notepad Tomcat Server
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi Ulf,
Thanks for your quick reply.

Can you please tell me a bit more in detail, if vendor wants to implement his own authentication mechanism, MUST he do in a separate descriptor file rather than web.xml?

Cheers,
Naren
 
Ulf Dittmer
Rancher
Posts: 42969
73
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Vendor are free to add any features they want to a container, in any way they see fit. But the servlet spec defines what features the vendors must implement in order to be considered compliant. Beyond that, everything is fair game.
 
Naren Chivukula
Ranch Hand
Posts: 577
Java Notepad Tomcat Server
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Okay...thanks.

Cheers,
Naren
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic