Skip to main content


Eclipse Community Forums

      Home
Home » Eclipse Projects » Remote Application Platform (RAP) » RAP application and BASIC AUTH with tomcat6(start of a RAP application fails when tomcat6 BASIC AUTH is configured)
RAP application and BASIC AUTH with tomcat6 [message #1062359] Fri, 07 June 2013 07:59 Go to next message
Eclipse UserFriend
Hi all,
I want to secure my RAP-Application with tomcat BASIC AUTH. The authentication works. After the successful authentication and the complete start of the GUI always this message is shown: 'The server session timed out. Please click here to restart the session'. The same happens with the demo application org.eclipse.rap.examples. Without BASIC AUTH the application works fine.

Does anybody know this problem and has a suggestion for me?
Any input is highly appreciated.

Thx in advance

I use RAP 2.0, tomcat 6.0 and WARProducts 0.2.2
Re: RAP application and BASIC AUTH with tomcat6 [message #1062711 is a reply to message #1062359] Mon, 10 June 2013 09:02 Go to previous messageGo to next message
Eclipse UserFriend
Hi,

FWIW, I can run the examples demo with BASIC authentication without
problems, both with RAP 2.0 and 2.1. Here's the configuration from my
web.xml:

<!-- Enable BASIC Auth -->
<security-constraint>
<web-resource-collection>
<web-resource-name>Protected RAP Application</web-resource-name>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>user</role-name>
</auth-constraint>
</security-constraint>
<login-config>
<auth-method>BASIC</auth-method>
<realm-name>Protected Area</realm-name>
</login-config>

How does your setup look like?

Regards, Ralf

--
Ralf Sternberg

Twitter: @EclipseRAP
Blog: http://eclipsesource.com/blogs/

Professional services for RAP and RCP?
http://eclipsesource.com/services/rap/
Re: RAP application and BASIC AUTH with tomcat6 [message #1062753 is a reply to message #1062711] Mon, 10 June 2013 11:42 Go to previous messageGo to next message
Eclipse UserFriend
Hi Ralf,

thanks for your reply, yes the web.xml looks like yours. I think, I've a timeout problem. On a local tomcat with a configured BASIC AUTH using the UserDatabaseRealm the application starts. When I use a remote tomcat or BASIC AUTH with the JNDIRealm to a LDAP Server I always get the timeout message. Thus, if the time between authentication and application start is too long the server session times out.

Has the UISession an own timer?

The HTML-Session-Timer uses the default (30 min)

Best regards
Re: RAP application and BASIC AUTH with tomcat6 [message #1062788 is a reply to message #1062753] Mon, 10 June 2013 13:55 Go to previous messageGo to next message
Eclipse UserFriend
> Has the UISession an own timer?

No, the UISession doesn't time out. Session timeout is handled only by
the servlet container. You get this message when the HttpSession has
timed out.

Best regards,
Ralf

--
Ralf Sternberg

Twitter: @EclipseRAP
Blog: http://eclipsesource.com/blogs/

Professional services for RAP and RCP?
http://eclipsesource.com/services/rap/
Re: RAP application and BASIC AUTH with tomcat6 [message #1064043 is a reply to message #1062788] Mon, 17 June 2013 07:45 Go to previous message
Eclipse UserFriend
thanks, I found the reason, the browser didn't allow cookies. To avoid the problem first it must be checked, if the session cookie can be set.
Previous Topic:[ANN] RAP 2.1 RC3 is available
Next Topic:Crash with click in tree on one specific IE10
Goto Forum:
  


Current Time: Sat Jul 05 17:24:09 EDT 2025

Powered by FUDForum. Page generated in 0.53801 seconds
.:: Contact :: Home ::.

Powered by: FUDforum 3.0.2.
Copyright ©2001-2010 FUDforum Bulletin Board Software

Back to the top

Sign up to our Newsletter

A fresh new issue delivered monthly