Two clear reasons for what? Mark
Jack wrote: > 1. The Users of a web-app might be defined in several places such as > Database, or a file. > > 2. when we are not using ssl, but ask for client certificate. > We have to map certificats to roles. Although most certificates can be > mapped to a generic role. > A few certificates might be mapped to some specific roles. a) You can not use ssl and ask for client certificates. CLIENT-CERT requires the use of ssl. b) Realms map users to roles regardless of authentication mechanism (BASIC, DIGEST, FORM or CLIENT-CERT). There are a few gaps in the JNDI realm implementation and I am working on these at the moment as a result of bug 7831. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
