NonStop Servlets for JavaServer Pages (NSJSP) 6.0 System Administrator's Guide
Configuring NSJSP
NonStop Servlets for JavaServer Pages (NSJSP) 6.0 System Administrator’s Guide—544548-004
3-30
JNDIRealm
There must be an attribute (identified by the userPassword attribute of our
<Realm> element) that contains the user's password, either in clear text or
digested (see Digested Passwords on page 3-39).
Each group of users that has been assigned a particular role is represented by an
individual element in the top level DirContext, which is accessed through the
connectionURL attribute.
The user group element must have the following characteristics:
A set of all possible groups of interest that can be selected by an LDAP search
pattern configured by the roleSearch attribute in the <Realm> element.
A roleSearch pattern that optionally includes pattern replacements {0} for the
distinguished name, and {1} for the username of the authenticated user for
which roles are to be retrieved.
A roleBase attribute is set to the element that is the base of the search for
matching roles. If not specified, the entire directory context is searched.
A roleSubtree attribute that is set to true to search the entire subtree of the
directory context. The default value of false requests a search for only the
current level.
A element that includes an attribute (whose name is configured by the
roleName attribute of our <Realm> element) including the name of the role
represented by this element.
There must be an administrator user name and a password that NSJSP 6.0 can
use to establish a connection with the directory server, with read-only access to the
information described above.
JNDIRealm Element Attributes
To configure JNDIRealm, create a <Realm> element and nest it in your
NSJSP_HOME/conf/server.xml file or in the <Context> element in the context
configuration file, as in Example 3-9
on page 3-23. These attributes are supported for
JNDIRealm:
className
The value is org.apache.catalina.realm.JNDIRealm.
connectionName
The user name used to establish a JNDI connection with the directory server.
connectionPassword
The password used to establish a JNDI connection with the directory server.