Lines 65-70
Link Here
|
65 |
return (true); |
65 |
return (true); |
66 |
} |
66 |
} |
67 |
|
67 |
|
|
|
68 |
// If we are preauthenticated, run the authorization |
69 |
String remoteUser = (String) |
70 |
request.getCoyoteRequest().getAttribute(Constants.REQ_REMOTE_USER_NOTE); |
71 |
if (remoteUser != null) { |
72 |
if (containerLog.isDebugEnabled()) |
73 |
containerLog.debug("Already authenticated '" + remoteUser + "', authorizing"); |
74 |
principal = context.getRealm().authenticate(remoteUser); |
75 |
if (principal != null) { |
76 |
register(request, response, principal, |
77 |
HttpServletRequest.CLIENT_CERT_AUTH, remoteUser, null); |
78 |
return (true); |
79 |
} |
80 |
return (false); |
81 |
} |
82 |
|
68 |
// NOTE: We don't try to reauthenticate using any existing SSO session, |
83 |
// NOTE: We don't try to reauthenticate using any existing SSO session, |
69 |
// because that will only work if the original authentication was |
84 |
// because that will only work if the original authentication was |
70 |
// BASIC or FORM, which are less secure than the CLIENT_CERT auth-type |
85 |
// BASIC or FORM, which are less secure than the CLIENT_CERT auth-type |