• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Tim Cooke
  • paul wheaton
  • Liutauras Vilda
  • Ron McLeod
Sheriffs:
  • Jeanne Boyarsky
  • Devaka Cooray
  • Paul Clapham
Saloon Keepers:
  • Scott Selikoff
  • Tim Holloway
  • Piet Souris
  • Mikalai Zaikin
  • Frits Walraven
Bartenders:
  • Stephan van Hulst
  • Carey Brown

The browser asks for authentication when using Apache Tomcat Connector from another domain.

 
Greenhorn
Posts: 1
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Our system is a Java system that is working on apache tomcat. There system is working on IIS(6.0).
To make it work we are putting the Apache Tomcat Connector(ajp v. 1.3) as a proxy for forwarding all the information from the iis to the Apache Tomcat server.

We installed it like this in one domain when the apache is on an other computer then the iis. We now tried to add another connection like this and it didn't work well.

The new connection is from another domain. The new iis forwarded the static pages but when it tried to do an ajax request there opened a window with a request to enter the user and password.

We can see that the ntlm is forwarded to the apache.

Thanks,
Elisha
 
Saloon Keeper
Posts: 28402
210
Android Eclipse IDE Tomcat Server Redhat Java Linux
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Welcome to the JavaRanch, Elisha!

It sounds like what you need is Single Signon (SSO).

Tomcat uses plug-in modules called Realms to handle JEE standard security. Most of them control authentication and authorization for a single app on a single server. However, SSO Realms can reference a master A&A service such as NTLM so that they won't force a login if the user was already logged in somewhere else. NTLM is an extreme case, since you have to do a Windows login just to get to the desktop, but that actually isn't important to SSO. Signed on is Signed on, after all.
 
I am going down to the lab. Do NOT let anyone in. Not even this tiny ad:
Smokeless wood heat with a rocket mass heater
https://woodheat.net
reply
    Bookmark Topic Watch Topic
  • New Topic