4 Replies Latest reply on Jul 30, 2002 4:29 PM by jameschaingchen

standalone catalina and security

rick_d Feb 20, 2002 9:43 AM

I posted this to the configuration forum and did not get any response, so I thought I would try it here.

Can someone please tell me how to configure a standalone Catalina server to propagate the user credentials to a standalone Jboss server that may eventually run on a separate machine. I have catalina set up with secured web pages that forces a user to log in, I also have JBoss set up to get the user info from the same database as catalina, my only problem is that any call to a secure ejb gets a principle=null. I have searched archives and forums, and bought the jboss documentatain, but I can't seem to find an answer. Any help would be greatly appreciated.

Thanks,
Rick

1. Re: standalone catalina and security

yeroc Feb 20, 2002 7:18 PM (in response to rick_d)

I feel your pain! We've been struggling with this exact same problem.

Here are a few other threads that talk about similar struggles by others (none seem to have a complete solution unfortunately :P):

http://main.jboss.org/thread.jsp?forum=49&thread=5706
http://main.jboss.org/thread.jsp?forum=49&thread=4038
http://main.jboss.org/thread.jsp?forum=49&thread=3356
http://main.jboss.org/thread.jsp?forum=49&thread=2041
http://main.jboss.org/thread.jsp?forum=49&thread=1649

I am very surprised this is not spelled out clearly in the documentation for either tomcat or jboss since I would think that many people would want to split their web tier & ejb tier for security reasons?!? We also purchased the JBoss doc to no avail.

Please post here if you do find a good solution.

Corey
Actions
2. Re: standalone catalina and security

luke_t Feb 24, 2002 1:31 PM (in response to rick_d)

> Can someone please tell me how to configure a standalone Catalina server to propagate the user credentials to a standalone Jboss server.

Hi,

I think the simple answer is that you can't :).

At least I don't think anyone has written a tomcat 4 security interceptor, realm or whatever which passes credentials obtained through tomcat's security infrastructure to a remote JBoss. It was relatively straightforward in tomcat 3...

Luke.
Actions
3. Re: standalone catalina and security

rick_d Feb 25, 2002 8:55 AM (in response to rick_d)

Thank you very much for answering my question Luke, at least I can stop banging my head for now.

Rick
Actions
4. Re: standalone catalina and security

jameschaingchen Jul 30, 2002 4:29 PM (in response to rick_d)

Luke,

Would you please describe steps showing how to
pass credentials obtained through a standalone tomcat's (tomcat 3.2.3) security infrastructure to a remote JBoss?

Thanks!

James
Actions

Go to original post