• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Paul Clapham
  • Ron McLeod
  • Bear Bibeault
  • Liutauras Vilda
Sheriffs:
  • Jeanne Boyarsky
  • Junilu Lacar
  • Henry Wong
Saloon Keepers:
  • Tim Moores
  • Stephan van Hulst
  • Jj Roberts
  • Tim Holloway
  • Piet Souris
Bartenders:
  • Himai Minh
  • Carey Brown
  • salvin francis

LDAP Authentication w/ Custom Authorization

 
Greenhorn
Posts: 3
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi All,

I'm currently working on a project migrating a J2EE app from WebSphere v5.1 to Tomcat 6. Previously, authentication & authorization were handled by the WebSphere container and associated EAR file. This was all done through the WebSphere Admin Console GUI.

What I need now, is for the Tomcat container to handle authentication through LDAP. This I have working. Now, my problem is this... We currently do not retrieve any roles from the LDAP, just search for correct uid/credentials. Our WebSphere container previously granted the Admin role to ALL authenticated users through the EAR deployment descriptor.

How can I achieve this with Tomcat? Do I need to create a custom JAAS LoginModule? I need to keep the form based authentication for my app.

Thanks in advance to any help you can provide.

Andy
 
Mister Wang
Greenhorn
Posts: 3
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I have an idea, let me know if this will work.

Could I just extend the JNDIRealm and override the getRoles method to always return some hard coded roles? Since I already have a JNDIRealm which works for authentication, this seems like a temporary fix.

Any suggestions?
 
Put a gun against his head, pulled my trigger, now he's dead, that tiny ad sure bled
the value of filler advertising in 2020
https://coderanch.com/t/730886/filler-advertising
reply
    Bookmark Topic Watch Topic
  • New Topic