Eclipse Community Forums: Remote Application Platform (RAP)

Home » Eclipse Projects » Remote Application Platform (RAP) » Client Authentication with Tomcat(Can't extract the user principal)

Show: Today's Messages :: Show Polls :: Message Navigator

Client Authentication with Tomcat [message #674652]

Fri, 27 May 2011 17:43

Mark Leone

Messages: 123
Registered: July 2009

Senior Member

I have a RAP app running in Tomcat 6.x, with an SSL Connector configured to require client authentication (clientAuth="true"). The browser sends a cert to the server, as verified by requiring user confirmation. However when I try to access the User principal from the RAP app, it's null.

Here's the code I'm using, in the init() method of an editor. I also tried it in createPartControl().

RWT.requestThreadExec( new Runnable() {
    run() {
         Principal user = RWT.getRequest().getUserPrincipal();
         ...
    }
} );

With the above, user is always null. I'm able to access the SSL session ID, however, with RWT.getRequest().getAttribute("javax.servlet.request.ssl_session")

I don't have any security constraints defined in the web app's web.xml, since the ssl connector requires client authentication. Is that required, in order to have a User Principal present on the session?

Report message to a moderator

Re: Client Authentication with Tomcat [message #674717 is a reply to message #674652]

Sat, 28 May 2011 02:47

Mark Leone

Messages: 123
Registered: July 2009

Senior Member

Defining an auth-constraint in web.xml caused the user principal to be available in the HttpServletRequest. A description of how to associate the username/role defined in a realm with the DN from the cert can be found here.

Report message to a moderator

Previous Topic:	Problem in drawing transparent image
Next Topic:	I can use 'clipboard'

Goto Forum:

-=] Back to Top [=-

[ Syndicate this forum (XML) ] [

]

Current Time: Thu Apr 18 10:31:23 GMT 2024

.:: Contact :: Home ::.

Breadcrumbs

Sign up to our Newsletter