I have the following problem:
I developed 2 simple web application with JBoss 4.0.0 (with Tomcat50.sar patch) and JBoss 4.0.1. The first application with FORM Authentication and the second application with BASIC Authentication. The first application works fine and also work fine the instructions request.getAuthType(), request.isUserInRole() and request.getUserPrincipal().
In the second application, with BASIC Authentication, the server asks me to put the username and password. The server is able to authenticate but when I use the instructions request.getAuthType I have a null value. The same with request.getUserPrincipal and request.isUserInRole returns false. Where is the problem?
I did the same with only Tomcat 5 server and I had the same results. I suppose that BASIC and DIGEST Authentication are only partially supported by Tomcat and JBoss. Is this true or I made some mistake?
Is there someone able to give me an explanation?
Thanks and bye,
BASIC and FORM auth are fully supported, DIGEST is not since it requires access to the clear text password on the server and this is not generally available.