[jcifs] Role based NTLM

Gelhar, Wallace Joseph GELHARWJ at uwec.edu
Thu Sep 2 01:03:44 GMT 2004


Hi Manju, 

I am working on this same problem.  Currently, if the method getGroups returns a empty set if the status code ERROR_MORE_DATA is returned.  This simply means that the 64k limitation has been reached (i.e. the user has more groups than can be returned in a single request).  I've modified the source to try and solve this but still do not know how to format subsequent requests for the remaining groups.

Now if you want to maintain group membership in Tomcat instead of Active Directory, then you can use jcifs and not jcifs-ext.  BTW, jcifs-ext filter will also call the default isUserInRole("Role") before checking the AD as well.  So if a user is in the Tomcat configured role it will always return true regardless of the AD membership.

I'll keep the list up to date with what I come up with. 

Wally 

________________________________

From: jcifs-bounces+gelharwj=uwec.edu at lists.samba.org on behalf of Manju_Panjwani at DadeBehring.com
Sent: Wed 9/1/2004 1:37 PM
To: jcifs at lists.samba.org
Subject: [jcifs] Role based NTLM



Newbie question-
I am trying to check whether user belongs to a particular group using  the
jci-fs extension filter

    http://sourceforge.net/projects/jcifs-ext/

I have made the required changes to web.xml file.
but the call to the method isUserInRole("GROUPNAME") always returns false.
For e.g. the user belongs to Administrators group but
request.isUserInRole("Administrators") always returns false
Do I have to configure the roles in TOMCAT as well? What else do I need to
configure?
Please help.
Thanks
-Manju

THIS E-MAIL MAY CONTAIN CONFIDENTIAL OR PROPRIETARY MATERIAL FOR THE SOLE
USE OF THE INTENDED RECIPIENT.  ANY REVIEW, USE, DISTRIBUTION OR DISCLOSURE
BY OTHERS IS STRICTLY PROHIBITED.  IF YOU ARE NOT THE INTENDED RECIPIENT,
OR AUTHORIZED TO RECEIVE THE INFORMATION FROM THE RECIPIENT, PLEASE CONTACT
THE SENDER BY REPLY E-MAIL AND DELETE ALL COPIES OF THIS MESSAGE.



-------------- next part --------------
HTML attachment scrubbed and removed


More information about the jcifs mailing list