Tomcat Single-SignOn Authenticator ValveThe Waffle Tomcat Negotiate Authenticator implements the Negotiate protocol with Kerberos and NTLM single sign-on support. This allows users to browse to a Windows intranet site without having to re-enter credentials. The authenticator integrates with Tomcat Realms and therefore allows you to protect select areas of the website. Configuring TomcatThe following steps are required to configure Tomcat with Waffle authenticator.Package Waffle JARs, including waffle-jna-2.1.1.jar, caffeine-2.8.0.jar, jna-5.5.0.jar, jna-platform-5.5.0.jar, slf4j-api-2.0.0-alpha1.jar and waffle-tomcattomcat version-2.1.1.jar in the application's lib directory or copy them to Tomcat's lib. For latest snapshot instead use waffle-jna-2.1.2-SNAPSHOT, caffeine-2.8.0.jar, jna-5.5.0.jar, jna-platform-5.5.0.jar, slf4j-api-2.0.0-alpha1.jar and waffle-tomcattomcat version-2.1.2-SNAPSHOT.jarAdd a valve and a realm to the application context.
![]()
Jul 30, 2007 Download Project Dogwaffle Free 1.2. Become a great artist on your PC. Have you ever thought about painting a masterpiece like all the great artists have? Do you balk at the idea of buying all the materials and having to replace them all the time? Well, now you. Project Dogwaffle 1.2 Free Download Page. Project Dogwaffle 1.2 (4.3MB) PC Software for people who like to draw, sketch, animate and paint. Advertisement DOWNLOAD LOCATIONS FOR: Project Dogwaffle 1.2 External Download Link 1.
![]()
For an application, modify META-INFcontext.xml. Demo Application/.GETPOSTBUILTINUsers TroubleshootingEnable Waffle logging. Add the following to conflogging.properties in your Tomcat installation. Waffle.apache.NegotiateAuthenticator.level = FINERestart Tomcat and review logsCatalina.log. Waffle Authenticator DemoA demo application can be found in the Waffle distribution in the Sampleswaffle-negotiate directory.
Copy the entire directory into Tomcat's webapps directory and navigate to Valve OptionsThe following options are supported by the Valve. principalFormat: Specifies the name format for the principal. roleFormat: Specifies the name format for the role. allowGuestLogin Allow guest login. When true and the system's Guest account is enabled, any invalid login succeeds as Guest. protocols: authentication protocol(s), comma separated, default is 'Negotiate,NTLM'Note: While the default value of allowGuestLogin is true, it is recommended that you disable the system's 'Guest' account to disallow Guest login. This option is provided for systems where you don't have administrative privileges.The following principal/group formats are supported.
![]()
fqn: Fully qualified names, such as domainusername. When unavailable, a SID is used. This is the default. sid: SID in the S- format. both: Both a fully qualified name and a SID in the S- format. The fully qualified name is placed in the list first.
Tomcat assumes that the first entry of this list is a username. none Do not include a principal name. Permitted only for roleFormat.Go.
![]() Comments are closed.
|
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |