This week's book giveaway is in the OCAJP 8 forum. We're giving away four copies of OCA Java SE 8 Programmer I Study Guide and have Edward Finegan & Robert Liguori on-line! See this thread for details.
Problem: I have some pretty simple JSPs and Servlets...no EJBs. I use LDAP as a container managed authenticator. It's worked fine until recently. I'm certain nothing significant has changed on the Appserver side. Of course, I would not bet my child on it. Nevertheless, what happens suggests its still partially working. The login pop-up still works and prevents unauthorized logins. And (this is the bugger) in the first jsp invoked (an index.jsp from a welcome config) successfully acquires the uid from getRemoteUser(). EVERY SUBSEQUENT CALL TO GETREMOTEUSER() RETURNS NULL! I can invoke any other app object on startup except the index.jsp and the security is bypassed. I've attached the relevant portion of my web.xml below. Any ideas would be vastly appreciated. Thank, joe
<security-constraint> <web-resource-collection> <web-resource-name>Access Control</web-resource-name> <description></description> <url-pattern>/*</url-pattern> <http-method>GET</http-method> <http-method>PUT</http-method> <http-method>HEAD</http-method> <http-method>TRACE</http-method> <http-method>POST</http-method> <http-method>DELETE</http-method> <http-method>OPTIONS</http-method> </web-resource-collection> <auth-constraint> <description>All Users</description> <role-name>user</role-name> </auth-constraint> <user-data-constraint> <transport-guarantee>NONE</transport-guarantee> </user-data-constraint> </security-constraint> <security-role> <description>Restrict Access to authenticated users</description> <role-name>user</role-name> </security-role> I am using the following platform/tech: -Websphere 5.0 appserver on Win2k -Domino 5.0.11 LDAP server and directory (i.e., Notes) WS Global Security Configuration: Active Authentication Mechanism: SWAM WS LDAP User Registry Configuration: "Custom" LDAP user registry configuration, as the Domino one never seemed to work User Filter (&(uid=%v)(objectclass=dominoPerson)) Group Filter (&(cn=%v)(objectclass=dominoGroup)) User ID Map dominoPerson:shortname Group ID Map *:cn Group Member ID Map dominoGroup:member Certificate Map Mode EXACT_DN Certificate Filter none