JAAS Tomcat
I've implemented JAAS with Tomcat because I'd like to both authenticate as well as authorize users of the web app. Currently, I have created a jaas.conf file which is located in the conf directory of Tomcat. However, I'd like to be able to make the authentication/authorization process independent of any settings of the Tomcat app server. ( Consider a hosting company like lunar pages where one can not make changes to the settings for the Resin server - Resin is a servlet container/engine like Tomcat ) All configuration must be application level, and the JVM is shared. So how do I specify what Configuration is to be used by the LoginContext in this circumstance? And If I set a property using System.setProperty(key,value) doesn't that effect other apps running in a shared JVM?
