Java Mailing List Archive

http://www.junlu.com/

Home » Home (12/2007) » Tomcat Users »

Re: Two authentication mechanisms in a webapp.

Bill Barker

2003-12-31

Replies:


"Ilari Kontinen" <ikontine@(protected)
news:1072826769.1455.70.camel@(protected)...
> Hello,
>
> I have a web-application that has a JSP-based UI and an AXIS-based web
> service. I need to use FORM-based authentication for the UI users and
> BASIC-authentication for web service users.
>
> Is it possible to have the two authentication mechanisms in one webapp,
> or do I need to separate the UI and the web service in two webapps?
>

Well, anything is possible if you want to put enough work into it :). And
this one is pretty high on the work-scale. You'd need to implement your own
custom Authenticator that desides wether to delegate to FormAuthenticator or
to BasicAuthenticator. The downside is that you are locked into Tomcat (and
probably even a specific version of Tomcat).

I don't know the specs for your project, but if possible, I'd probably try
to split it into two webapps and use SingleSignOn.


> Thanks
> Ilari




---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@(protected)
For additional commands, e-mail: tomcat-user-help@(protected)



©2008 junlu.com - Jax Systems, LLC, U.S.A.