Re: Realm authentication - unconventional usage

2006-11-22 Thread Santosh Puranshettiwar
Caldarale, Charles R wrote: Thanks. From: Santosh Puranshettiwar [mailto:[EMAIL PROTECTED] Subject: Re: Realm authentication - unconventional usage So seems like I *will* have to stick to application layer authentication, or is there a way out? Why can't you use one of the sta

Re: Realm authentication - unconventional usage

2006-11-22 Thread Daniel L. Gross
Realm authentication - unconventional usage So seems like I *will* have to stick to application layer authentication, or is there a way out? Why can't you use one of the standard, spec-defined, container-managed mechanisms? - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR

RE: Realm authentication - unconventional usage

2006-11-22 Thread Caldarale, Charles R
> From: Santosh Puranshettiwar [mailto:[EMAIL PROTECTED] > Subject: Re: Realm authentication - unconventional usage > > So seems like I *will* have to stick to application layer > authentication, or is there a way out? Why can't you use one of the standard, spec-define

Re: Realm authentication - unconventional usage

2006-11-22 Thread Santosh Puranshettiwar
David Delbecq wrote: There are only 5 ways to do authentification on a servlet application: The first, FORM, use form that POST to /j_security_check the j_username and the j_password |web.xml: FORM /Error.html /SignOn.html | |html: | The se

Re: Realm authentication - unconventional usage

2006-11-22 Thread David Delbecq
There are only 5 ways to do authentification on a servlet application: The first, FORM, use form that POST to /j_security_check the j_username and the j_password |web.xml: FORM /Error.html /SignOn.html | |html: | The second and third, BASIC a

Re: Realm authentication - unconventional usage

2006-11-22 Thread olivier nouguier
I just like to point you the usual / standard use of J2EE authentication in a web tier ! http://java.sun.com/products/servlet/download.html With restricted resources define in web.xml Login page (FORM) And a defined realm in context.xml (or server.xml) No more ... PS: I don't think it really s

Re: Realm authentication - unconventional usage

2006-11-22 Thread Santosh Puranshettiwar
olivier nouguier wrote: Thanks. Hi The "natural" *post* should be http://localhost/realm-test /j_security_check?j_username=foo&j_password=bar Let me make sure I got it right. So you mean the request should be something like this: - URL: - http://localhost/realm-test?j_security_check (method

Re: Realm authentication - unconventional usage

2006-11-22 Thread olivier nouguier
Hi The "natural" *post* should be http://localhost/realm-test /j_security_check?j_username=foo&j_password=bar And should be OK. What are your need ? On 11/22/06, Santosh Puranshettiwar <[EMAIL PROTECTED]> wrote: Hello, I wish to user a JDBCRealm with the username & password coming in the

Realm authentication - unconventional usage

2006-11-22 Thread Santosh Puranshettiwar
Hello, I wish to user a JDBCRealm with the username & password coming in the HTTP request as key-value pairs. Is it possible? Elaborate: - They request uri: - http://localhost/realm-test/RealmTestServetlet?username=foo&password=bar The Realm must authenticate with 'foo' & 'bar'. -- Santosh.