我正在开发一个必须在Tomcat上运行的JAVA APP,我需要能够识别正在加入我的应用程序网络的远程用户。
这个远程用户正在Windows上运行,因此我需要获取他的“windows login”(sAMAccountName活动目录属性)。
在IIS上最简单。我按照这个Detect user logged on a computer using ASP.NET app来记录用户
server.xml的内容是:
<Realm
className="org.apache.catalina.realm.JNDIRealm" debug="99"
connectionURL="ldap://DAServer:389"
connectionName="userAuth@mydomain.local"
connectionPassword="secret"
referrals="follow"
userBase="OU=mycompany,DC=mydomain,DC=local"
userSubtree="true"
roleBase="OU=groups,DC=mydomain,DC=local"
roleName="name"
roleSubtree="true"
roleSearch="(member={0})"/>
web.xml的内容是:
<!-- Define a Security Constraint on this Application -->
<security-constraint>
<web-resource-collection>
<web-resource-name>Entire Application</web-resource-name>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>myCompany Users</role-name>
</auth-constraint>
</security-constraint>
<!-- Define the Login Configuration for this Application -->
<login-config>
<auth-method>BASIC</auth-method>
<realm-name>myRealm</realm-name>
</login-config>
<!-- Security roles referenced by this web application -->
<security-role>
<description>The role that is required to log in to APP</description>
<role-name>myCompany Users</role-name>
</security-role>
我需要自动登录。