This is an automated email from the ASF dual-hosted git repository.
schultz pushed a commit to branch 7.0.x
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/7.0.x by this push:
new 50fafec Clarify how to set an authenticated principal using
tomcatAuthentication="false".
50fafec is described below
commit 50fafec09c1b4313d8296312065204f092962112
Author: Christopher Schultz <ch...@christopherschultz.net>
AuthorDate: Fri May 15 09:56:56 2020 -0400
Clarify how to set an authenticated principal using
tomcatAuthentication="false".
---
webapps/docs/config/ajp.xml | 8 +++++---
1 file changed, 5 insertions(+), 3 deletions(-)
diff --git a/webapps/docs/config/ajp.xml b/webapps/docs/config/ajp.xml
index 0b93fd8..98df292 100644
--- a/webapps/docs/config/ajp.xml
+++ b/webapps/docs/config/ajp.xml
@@ -524,9 +524,11 @@
<attribute name="tomcatAuthentication" required="false">
<p>If set to <code>true</code>, the authentication will be done in
Tomcat.
Otherwise, the authenticated principal will be propagated from the native
- webserver and used for authorization in Tomcat. Note that this principal
- will have no roles associated with it.
- The default value is <code>true</code>. If
+ webserver and used for authorization in Tomcat. </p>
+ <p>The web server must send the user principal (username) as a request
+ <i>attribute</i> named <code>REMOTE_USER</code>.</p>
+ <p>Note that this principal will have no roles associated with it.</p>
+ <p>The default value is <code>true</code>. If
<code>tomcatAuthorization</code> is set to <code>true</code> this
attribute has no effect.</p>
</attribute>
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
