Help coderanch get a
new server
by contributing to the fundraiser
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Ron McLeod
  • Paul Clapham
  • Devaka Cooray
  • Liutauras Vilda
Sheriffs:
  • Jeanne Boyarsky
  • paul wheaton
  • Henry Wong
Saloon Keepers:
  • Stephan van Hulst
  • Tim Holloway
  • Tim Moores
  • Carey Brown
  • Mikalai Zaikin
Bartenders:
  • Lou Hamers
  • Piet Souris
  • Frits Walraven

Basic authentication using custom Login Module in WAS 6.1

 
Greenhorn
Posts: 1
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Hi
I need to enable "Basic" authentication for a url pattern in my webapplication on websphere 6.1. I have created a cusom Application Login and added a custom "Login Module", that does authentication using a custom native store, to it. Now i need to know how do I specify that my application should use this application login.

I have enabled global and application security and my admin console asks me for a username/password now.
 
Ranch Hand
Posts: 510
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
To enable the authentication you will need a login-config element in your web-xml file. In your case, it will look like this


once this element is present, the user must be authenticated in order to access any resource that is constrained by a <security-constraint> defined in the Web Application. Once authenticated, the user can be authorized to access other resources with access privileges.

Your <security-constraint> will look like this


This says that for the url pattern that you specify in the <url-pattern> tag and the GET and POST methods in the resource (usually a servlet) that matches the url pattern, authentication will have to happen. I included the
which indicates that the request should use https. If you do not want the url-pattern resources to use https then remove this tag

For a great explanation of these tags read the Head First Servlets and JSP book

Here is a link to some documentation regarding the tags I have references in the above text

http://edocs.bea.com/wls/docs61/webapp/web_xml.html#1019996

The user ID and password that you are being asked for are used to log into the admin console. Use the username and password of the that you used when you installed WebSphere

I know this works because I use it in RAD 6.0. I am curious how you wrote the Login Module and how you configured it. Could you help me with this?
-Fixed XML
[ July 18, 2007: Message edited by: Merrill Higginson ]
 
Michael Ku
Ranch Hand
Posts: 510
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
the xml tags I entered into the previous reply are being corrupted
Is there a way to enter XML into the reply and have it come across as entered?
 
Ranch Hand
Posts: 4864
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Michael K,

Thanks for helping out!

The editor JavaRanch uses is supposed to automatically convert < and > to & l t ; and & g t ; Sometimes, for some unknown reason (probably related to the phases of the moon and the price of ginseng in Malaysia) it just doesn't work. I fixed your post by pasting it into JEDIT and using the find replace function to replace the offending characters.

One hint: If you wish to preserve the indentation in your code, surround it with [ c o d e ] and [ / c o d e ] tags.

Oh, and one other thing: The JavaRanch Naming Policy says you need a first and last name, and not just an initial. Please change your user profile when you get a chance.
[ July 18, 2007: Message edited by: Merrill Higginson ]
 
With a little knowledge, a cast iron skillet is non-stick and lasts a lifetime.
reply
    Bookmark Topic Watch Topic
  • New Topic