From bc69166bb372db16a7042419e937fb91dd843e69 Mon Sep 17 00:00:00 2001 From: dayash Date: Sat, 18 Jan 2003 07:31:13 +0000 Subject: [PATCH] *** empty log message *** --- README | 32 +++++++++++++++++++++++++------- 1 file changed, 25 insertions(+), 7 deletions(-) diff --git a/README b/README index 5ba74fe..306b324 100644 --- a/README +++ b/README @@ -1,6 +1,6 @@ -$Id: README,v 1.13 2003/01/06 05:05:48 maxcooper Exp $ -$Revision: 1.13 $ -$Date: 2003/01/06 05:05:48 $ +$Id: README,v 1.14 2003/01/18 07:31:13 dayash Exp $ +$Revision: 1.14 $ +$Date: 2003/01/18 07:31:13 $ Security Filter v1.0-b5 @@ -30,6 +30,14 @@ License. See the LICENSE file for details. This product includes software developed by the Apache Software Foundation (http://www.apache.org/). +What's new in this version? +1. Both FORM and BASIC authentication schemes are supported by the SecurityFilter. +2. User is compeletely logged out of the system on a logout request even when using +BASIC Authentication scheme. This feature has not been implemented in any J2EE Application +server known so far. +3. Tested on Orion 1.5.2 (which implements "Servlet 2.3 public final draft" but not +"Servlet 2.3 specification") and Weblogic 6.1 SP3. This feature is useful for developers +using Orion 1.5.2. What's in this package? ----------------------- @@ -41,6 +49,10 @@ securityfilter realm implementation. 2. securityfilter-catalina-example.war - Same as securityfilter-example app with Tomcat (Catalina) realm implementation and realm adapter class. +3. Both securityfilter-catalina-example.war and securityfilter-example.war can be run +in BASIC Authentication mode i.e. is the user will be challenged for credential using +a basic window pop-up. + A securityfilter-blank.war example app is also provided as a skeleton to use to start a new securityfilter application, or integrate into an existing application. Source code and JavaDocs are also included. For installation @@ -73,6 +85,10 @@ security mechanism. You will also need to specify your realm (or realms, if you are using a realm adapter or decorator class). Realm properties can be set with the realm-param tag. +4. Specify either BASIC or FORM authentication scheme in auth-method tag of +securityfilter-config.xml. If you specify BASIC authentication scheme you can still +specify an application-specific login form page for logging the user in. + The example apps include web.xml and securityfilter-config.xml file examples. @@ -94,15 +110,17 @@ Contributors 2. Torgeir Veimo contributed the initial version of the Digester-based security- config.xml reader and improved the supporting data structures. -3. Prakash Malani provided review information and Ant build file help. +3. Daya Sharma implemented the BASIC authentication feature. + +4. Prakash Malani provided review information and Ant build file help. -4. Steve Ditlinger provided review information. +5. Steve Ditlinger provided review information. -5. The Apache Jakarta Struts project directory structure and build files were +6. The Apache Jakarta Struts project directory structure and build files were used as a model for this project, and the struts-user email list members have provided useful feedback and motivation for the project. -6. The members of the securityfilter-user email list that have provided bug +7. The members of the securityfilter-user email list that have provided bug reports, code patches, user support and feature suggestions for the SecurityFilter project. -- 2.11.0