Eclipse Community Forums
Forum Search:

Search      Help    Register    Login    Home
Home » Eclipse Projects » Remote Application Platform (RAP) » RAP application and BASIC AUTH with tomcat6(start of a RAP application fails when tomcat6 BASIC AUTH is configured)
RAP application and BASIC AUTH with tomcat6 [message #1062359] Fri, 07 June 2013 07:59 Go to next message
Katrin Göricke is currently offline Katrin Göricke
Messages: 4
Registered: June 2013
Junior Member
Hi all,
I want to secure my RAP-Application with tomcat BASIC AUTH. The authentication works. After the successful authentication and the complete start of the GUI always this message is shown: 'The server session timed out. Please click here to restart the session'. The same happens with the demo application org.eclipse.rap.examples. Without BASIC AUTH the application works fine.

Does anybody know this problem and has a suggestion for me?
Any input is highly appreciated.

Thx in advance

I use RAP 2.0, tomcat 6.0 and WARProducts 0.2.2
Re: RAP application and BASIC AUTH with tomcat6 [message #1062711 is a reply to message #1062359] Mon, 10 June 2013 09:02 Go to previous messageGo to next message
Ralf Sternberg is currently offline Ralf Sternberg
Messages: 1290
Registered: July 2009
Senior Member

Hi,

FWIW, I can run the examples demo with BASIC authentication without
problems, both with RAP 2.0 and 2.1. Here's the configuration from my
web.xml:

<!-- Enable BASIC Auth -->
<security-constraint>
<web-resource-collection>
<web-resource-name>Protected RAP Application</web-resource-name>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>user</role-name>
</auth-constraint>
</security-constraint>
<login-config>
<auth-method>BASIC</auth-method>
<realm-name>Protected Area</realm-name>
</login-config>

How does your setup look like?

Regards, Ralf

--
Ralf Sternberg

Twitter: @EclipseRAP
Blog: http://eclipsesource.com/blogs/

Professional services for RAP and RCP?
http://eclipsesource.com/services/rap/
Re: RAP application and BASIC AUTH with tomcat6 [message #1062753 is a reply to message #1062711] Mon, 10 June 2013 11:42 Go to previous messageGo to next message
Katrin Göricke is currently offline Katrin Göricke
Messages: 4
Registered: June 2013
Junior Member
Hi Ralf,

thanks for your reply, yes the web.xml looks like yours. I think, I've a timeout problem. On a local tomcat with a configured BASIC AUTH using the UserDatabaseRealm the application starts. When I use a remote tomcat or BASIC AUTH with the JNDIRealm to a LDAP Server I always get the timeout message. Thus, if the time between authentication and application start is too long the server session times out.

Has the UISession an own timer?

The HTML-Session-Timer uses the default (30 min)

Best regards
Re: RAP application and BASIC AUTH with tomcat6 [message #1062788 is a reply to message #1062753] Mon, 10 June 2013 13:55 Go to previous messageGo to next message
Ralf Sternberg is currently offline Ralf Sternberg
Messages: 1290
Registered: July 2009
Senior Member

> Has the UISession an own timer?

No, the UISession doesn't time out. Session timeout is handled only by
the servlet container. You get this message when the HttpSession has
timed out.

Best regards,
Ralf

--
Ralf Sternberg

Twitter: @EclipseRAP
Blog: http://eclipsesource.com/blogs/

Professional services for RAP and RCP?
http://eclipsesource.com/services/rap/
Re: RAP application and BASIC AUTH with tomcat6 [message #1064043 is a reply to message #1062788] Mon, 17 June 2013 07:45 Go to previous message
Katrin Göricke is currently offline Katrin Göricke
Messages: 4
Registered: June 2013
Junior Member
thanks, I found the reason, the browser didn't allow cookies. To avoid the problem first it must be checked, if the session cookie can be set.
Previous Topic:What is the correct to set a CSS selector on a subclass
Next Topic:TabFolder button bar background colour/transparent
Goto Forum:
  


Current Time: Sat Aug 30 00:37:13 EDT 2014

Powered by FUDForum. Page generated in 0.02109 seconds