Manualshelf

NonStop Servlets for JSP System Administrator's Guide

ManualsBrandsHP ManualsServerHP NonStop G-Series
71727374757677787980
Configuring NSJSP
NonStop Servlets for JavaServer Pages (NSJSP) System Administrator’s Guide525644-001
3-27
JNDIRealm
°
There must be an attribute (identified by the userPassword attribute of our
<Realm> element) that contains the user's password, either in clear text or
digested (see Digested Passwords on page 3-31).
Each group of users that has been assigned a particular role is represented by an
individual element in the top level DirContext, which is accessed via the
connectionURL attribute.
The user group element must have the following characteristics:
°
The set of all possible groups of interest can be selected by an LDAP search
pattern configured by the roleSearch attribute in our <Realm> element.
°
The roleSearch pattern optionally includes pattern replacements {0} for the
distinguished name, and/or {1} for the username, of the authenticated user for
which roles are to be retrieved.
°
The roleBase attribute can be set to the element that is the base of the
search for matching roles. If not specified, the entire directory context will be
searched.
°
The roleSubtree attribute can be set to true if you wish to search the entire
subtree of the directory context. The default value of false requests a search of
only the current level.
°
The element includes an attribute (whose name is configured by the
roleName attribute of our <Realm> element) containing the name of the role
represented by this element.
There must be an administrator username and password that NSJSP can use to
establish a connection to the directory server, with at least read-only access to the
information described above.
Realm Element Attributes
In order to configure a JNDIRealm, you will need to create a <Realm> element and
nest it in your iTPWS_INSTALL_DIR/servlet_jsp/conf/iTP_server.xml file,
as described in Example 3-18
. The following attributes are supported for JNDIRealm:
className
Specify the value org.apache.catalina.realm.JNDIRealm here.
connectionName
The username used to establish a JNDI connection with the directory server.
connectionPassword
The password used to establish a JNDI connection with the directory server.