Is there a way to coax java services running under tomcat to use the system authentication methods set up through PAM? In my case, this would be users in the local passwd file or through smb to a windows domain. I've added mod_auth_pam to get this effect with apache but would like to also handle java web services.
Les Mikesell wrote:
Is there a way to coax java services running under tomcat to use the system authentication methods set up through PAM? In my case, this would be users in the local passwd file or through smb to a windows domain. I've added mod_auth_pam to get this effect with apache but would like to also handle java web services.
If you use LDAP you can use LDAP with PAM and apparently configure Tomcat to talk to LDAP as well
http://blog.mc-thias.org/?title=tomcat_ldap_authentication&more=1&c=...
"Using Tomcat6 (Tomcat 6.0.13 to be precise ;)) on CentOS 4.5, a LDAP authentication can be set up using the JNDI Realm."[..]
http://tomcat.apache.org/tomcat-6.0-doc/realm-howto.html#JNDIRealm
Same for if your using a SQL DB for authentication, tomcat can tie into that too - http://tomcat.apache.org/tomcat-6.0-doc/realm-howto.html#JDBCRealm
nate
2009/12/2 Les Mikesell lesmikesell@gmail.com:
Is there a way to coax java services running under tomcat to use the system authentication methods set up through PAM? In my case, this would be users in the local passwd file or through smb to a windows domain. I've added mod_auth_pam to get this effect with apache but would like to also handle java web services.
java and J2EE (I think also tomcat) use JAAS for authentication purposes. JAAS is like PAM for java applications, in fact JAAS specification is based on PAM specification. There must be JAAS modules that authenticate against pam:
http://www.google.bg/search?sourceid=chrome&ie=UTF-8&q=jaas+pam+modu...
-
Alexander Georgiev -
Les Mikesell -
nate