On 03/09/2012 10:19 PM, John Magne wrote:

Patch to provide a custom tomcat Realm to protect CS servlets with
both client authentication protection and simple authorization protection.

Testing instructions in the patch's checkin message.

_______________________________________________
Pki-devel mailing list
Pki-devel@redhat.com
https://www.redhat.com/mailman/listinfo/pki-devel

Sorry I missed this. This is really cool. Would you say that this is a complete solution for the Authentication piece (Modulo maybe extending the ACIs) or is there more work to be done.

Am I correct in understanding that this uses ACIs for Authorization?