Problem migrating Tomcat 5.0 app to 5.5?

Reply

Join Date: Jan 2009
Posts: 2
Reputation: probedb is an unknown quantity at this point 
Solved Threads: 0
probedb probedb is offline Offline
Newbie Poster

Problem migrating Tomcat 5.0 app to 5.5?

 
0
  #1
Jan 21st, 2009
Hi all,

I've just joined but have been coding a while longer

I'm having trouble migrating a webapp that works fine under Tomcat 5.0.28 to 5.5. I've done several others without any problem. This one, however uses SingleSignOn. I can't see anything wrong with my setup (config below) from reading the docs. All the webapps are using Alterian's Mediasurface CMS.

The problem arises when you do a successful signon, rather than getting the relevant Mediasurface page I get a Tomcat 403: Access Denied page. On 5.0 it shows me the correct Mediasurface page. have *ed out passwords and stuff.

server.xml snippet:

JSP Syntax (Toggle Plain Text) 
  1. <Host name="intranet" debug="0" appBase="webapps/intranet" unpackWARs="true" autoDeploy="true"
  2. 	xmlValidation="false" xmlNamespaceAware="false">
  3. 	<Alias>intranet-psolecki</Alias>
  4. 	<Valve className="org.apache.catalina.valves.FastCommonAccessLogValve" directory="logs"
  5. 		prefix="intranet_access_log." suffix=".txt" pattern="common" resolveHosts="false"/>
  6. 	<Valve className="org.apache.catalina.authenticator.SingleSignOn"/>
  7. 	<Realm className="org.apache.catalina.realm.JNDIRealm"
  8. 			connectionURL="ldap://**********/"
  9. 			connectionName="*************"
  10. 			connectionPassword="*********"
  11. 			protocol="DIGEST-MD5"
  12. 			userBase="OU=******,DC=**,DC=***,DC=com***"
  13. 			userSearch="(sAMAccountName={0})"
  14. 			userRoleName="memberOf"
  15. 			roleSubtree="true"
  16. 			userSubtree="true"					
  17. 		/>
  18. 	<Context path="" docBase="${catalina.home}/webapps/intranet" debug="0" allowLinking="true">
  19. 		<Resources className="org.apache.naming.resources.FileDirContext" />
  20. 	</Context>
  21. </Host>

webapp's web.xml SSO snippet:

JSP Syntax (Toggle Plain Text) 
  1. <security-constraint>
  2. 	<web-resource-collection>
  3. 		<web-resource-name>Nrt</web-resource-name>
  4. 		<url-pattern>/global/loginregister/</url-pattern>
  5. 		<url-pattern>/global/footer/contact/</url-pattern>
  6. 		<url-pattern>/runningourbusiness/information/dataprotection/</url-pattern>
  7. 		<http-method>GET</http-method>
  8. 		<http-method>POST</http-method>
  9. 		<http-method>PUT</http-method>
  10. 		<http-method>DELETE</http-method>
  11. 	</web-resource-collection>
  12. 	<auth-constraint>
  13. 		<role-name>*</role-name>
  14. 	</auth-constraint>
  15. </security-constraint>
  16.  
  17. <login-config>
  18. 	<auth-method>FORM</auth-method>
  19. 	<realm-name>Unifi</realm-name>
  20. 	<form-login-config>
  21. 		<form-login-page>/WEB-INF/security/login.jsp</form-login-page>
  22. 		<form-error-page>/WEB-INF/security/error.jsp</form-error-page>
  23. 	</form-login-config>
  24. </login-config>
  25.  
  26. <security-role>
  27. 	<description>Only 'tomcat' role is allowed to access this web application</description>
  28. 	<role-name>tomcat</role-name>
  29. </security-role>

Any thoughts?

Thanks in advance,

Paul.
Reply With Quote Quick reply to this message  
Reply

Quick Reply to Thread
This thread is more than three months old.
Perhaps start a new thread instead?
Message:



Other Threads in the JSP Forum
Thread Tools Search this Thread



Tag cloud for JSP
apache array backbutton combobox comma connection csv database development directorystructure dropdownlist dynamicpagetitles eclipse frames glassfish ie8 imagetodatabse imageupload integer internet java javaee javascript jsf jsp jsppagetitles levels mvc2 mvcmodel2 mysql netbeans network parameters passing ping printinserverinsteadofclient project read redirect request.getparameter response seperated servlet servletdopost()readxml sessions software sql ssl state_saving_method stocks sun tomcat tutorial update values video web write
About Us | Contact Us | Advertise | DaniWeb | Acceptable Use Policy | RSS Feed

©2003 - 2009 DaniWeb® LLC