*
The moose likes Tomcat and the fly likes Tomcat Authentication with Directory Server Roles Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Products » Tomcat
Bookmark "Tomcat Authentication with Directory Server Roles" Watch "Tomcat Authentication with Directory Server Roles" New topic
Author

Tomcat Authentication with Directory Server Roles

Joe Ess
Bartender

Joined: Oct 29, 2001
Posts: 8836
    
    7

I can authenticate Tomcat users against a Sun One Directory Server using groups. I configure my realm like so:

and it works fine.

Unfortunately, the powers that be use Roles instead of Groups and I can't get authentication against Roles to work. Roles are represented as virtual attributes of a user as opposed to groups which contain uniquemember records (LDIF with some attributes snipped):



Now I configure my Tomcat server like so:


Authentication appears to work according to the Tomcat log:


but I get forwarded to an HTTP 403 error. This indicates to me that the user's roles are not being found. Can anyone point me in the right direction?


"blabbing like a narcissistic fool with a superiority complex" ~ N.A.
[How To Ask Questions On JavaRanch]
Joe Ess
Bartender

Joined: Oct 29, 2001
Posts: 8836
    
    7

I haven't found a solution to this problem.
Instead, the powers that be have created a tree for my users and I'm free to use groups.
 
wood burning stoves
 
subject: Tomcat Authentication with Directory Server Roles
 
Similar Threads
Tomcat and LDAP (connection problem)
Need help to read JNDIRealm inforamtion from my application.xml file in Tomcat
Brainstorming: authentication problems
JNDIRealm and digest
Tomcat and Active Directory