I got this really nice tutorial: http://jakarta.apache.org/tomcat/tomcat-3.3-doc/JDBCRealm-howto.html but still, it seems that it won't be useful for me because I need to store users and groups, not only users. My rights are defined by group (which means I will use the GROUPS table in the config) and I'll often need to retrieve the user from the session (and apparently this information won't be stored).
Does anyone know how I should do it with this kind of table structure?
Something else: What if I have my own encrypt algorithm and do not wanna use MD5, SHA or anything else?
posted 10 years ago
If I was you I'd write my own implementation of a javax.security.auth.spi LoginModule.