NonStop Servlets for JavaServer Pages (5.0) System Administrator's Guide
Configuring NSJSP
NonStop Servlets for JavaServer Pages (NSJSP) System Administrator’s Guide—525644-002
3-45
Digested Passwords
className
The value is org.apache.catalina.realm.UserDataBaseRealm.
digest
The digest algorithm used to store passwords in non-plain text formats. Valid
values are those accepted for the algorithm name by the
java.security.MessageDigest class. See Digested Passwords on page 3-45
for more information. If not specified, passwords are stored in clear text.
resourceName
Specifies a defined resource for user database.
In the above example, the “myOwnUserDatabase” is defined as a global naming
resource as follows:
<GlobalNamingResources>
:
:
<Resource name="myOwnUserDatabase"
description="my own user database"
type="org.apache.catalina.UserDatabase"/>
:
:
<ResourceParams name="myOwnUserDatabase">
<parameter>
<name>factory</name>
<value>org.apache.catalina.users.MemoryUserDatabaseFactory</value>
</parameter>
<parameter>
<name>pathname</name>
<value>conf/myOwnUsers.xml</value>
</parameter>
</ResourceParams>
:
:
</GlobalNamingResources>
For more information about configuring UserDatabaseRealm, see the Tomcat 5.0
Specification at
http://jakata.apache.org/tomcat/tomcat-5.0-doc.index.html.
Digested Passwords
For each of the standard realm implementations, the user's password (by default) is
stored in clear text. In many environments, this situation is undesirable because casual
observers of the authentication data can collect enough information to log on
successfully and impersonate other users. To avoid this problem, the standard
implementations support the concept of digesting user passwords. Digesting
passwords causes the stored version of the passwords to be encoded in a form that is
not easily reversible, but which the Realm implementation can still use for
authentication.
You select digested passwords by specifying the digest attribute on your <Realm>
element. The value for this attribute must be one of the digest algorithms supported by
the java.security.MessageDigest class (SHA, MD5, and so on). When you