https://issues.apache.org/bugzilla/show_bug.cgi?id=48685
--- Comment #30 from Michael Osipov <1983-01...@gmx.net> 2011-03-30 04:15:38 EDT --- Mark, I have attached some sample config files to make it run. This solution uses a keytab to validate tickets. I am aware of the Spring way, we use that Sec Extension also but I don't like that because of the following drawbacks: 1. You have ugly inline code which has to be maintained. 2. You have to provide a module for every JVM implementation (Oracle, IBM, etc) which the user would have again to configure 3. You cannot use your custom Krb5 modules which could happen. You have to alter and recompile tomcat then => ugly 4. You lose the entire configuration flexiblity of the modules unless you pass all config params of the modules through the authenticator => even more code. I'd rather stick with the login modules because they are proven to work well and are documented thoroughly by Oracle. I have tried to keep the implementation as simple as possible. Going the above way would require way more code. Mike -- Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
