Hi,
It seems Tomcat does not support SSL through the JNDIRealm that is implemented
with Catalina.
A while ago, I was looking for a solution to this, and stumbled across the
Cougaar security work. They seem to have provided a SecureJNDIRealm
implementation that is compatible with the existing JNDIRealm, easy to
implement in server.xml and agreeable with the Apache/Tomcat license.
http://cougaar.org/cgi-bin/viewcvs.cgi/securityservices/src/org/cougaar/core/security/crypto/ldap/?cvsroot=securitycore
The required classes are SecureJNDIRealm and JNDISSLFactory
It appears to have been implemented for Tomcat 4, but I have it running
successfully without modification (that I recall) on Tomcat 5.5.12 since
before December 2005.
It would be a nice boon if Tomcat integrated this functionality. Clear-text
simple bind to LDAP is garbage, and running an stunnel to hack around it is...
to put it simply, lame.
Thanks, from a happy user.
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
