i need to do the following. It's shown in the figure I added as an attachment but here in words.
The Apache works as an reverse proxy (thats for testing, later the Apache2 is replaced with IBM Webseal). The Apache authenticates the client against a LDAP database and if so he sends the request with the authenticated client credentials (user name, password(?)) to the Tomcat (in Webseal I can do that with the IV-headers). The Tomcat checks the authorization of the client with the same LDAP database.
How can I get the Apache to send the user credentials in the headers after authentication? Can I use the JNDI realm in Tomcat with that problem (credentials in header and authorization with LDAP)?