DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUGĀ· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://issues.apache.org/bugzilla/show_bug.cgi?id=41407>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED ANDĀ· INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=41407 [EMAIL PROTECTED] changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |[EMAIL PROTECTED] ------- Additional Comments From [EMAIL PROTECTED] 2007-01-19 05:37 ------- You try to do authorization with client certs? I'm afraid this is not implemented tomcat's JAASRealm. I am sure it is possible to create an extended JAASRealm2 which is able to provide full JAAS functionality with client certs also. The way to do it could be: 1. Implement authenticate(X509Certificate certs[]) just like the user/pwd-authenticate in JAASrealm. 2. Add an appropriate CallbackHandler for the cert chain to pass the certificates to the custom LoginModule. The custom authorization stuff has to go to the LoginModule so the new JAASRealm2 should be finished. Please let me know if you plan to implement it. -- Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
