Other Available Downloads
Aug 4, 2009
Sep 19, 2009
Aug 4, 2009
Aug 10, 2009
Aug 10, 2009
Aug 10, 2009
Jun 3, 2011
Jan 2, 2012
Download the version 22032014(March 23,2014). This version works with tomcat 8.5 and 9 too (remark : July 21, 2016)
You can now use tomcat 8.
version 29092012 (September 29, 2012)
With the fourth solution: the JVM and the CLR in the same process, without native code
The possibility to choose between Negotiate and the old NTLM has been added(when the parameter spnegoandntlm is set). You can use the version tomcat55 with jboss 5. There is a version with jboss6
The file doc contains the javadoc and the configuration file
The file trunk contains the DLL, JAr and the configuration file
The file src contains the C and Java source
The file all contains the sources, javadoc, dlls and jars
The file example is like the name
In the version 100809.
1)Most of the log messages are in english
2)A problem with IE and SPNEO/NTLM is resolved
Now, the file trunk-140909.zip contains the two files of the release 140909 (trunk-dll-140909.zip and trunk-tcp-140909.zip). The file contain documentation, sources, example, jar, dll and the Windows service.
The file trunk-02112009.zip contains the two files of the release 02112009(trunk-dll-02112009.zip and trunk-tcp-02112009.zip). The file contain documentation, sources, example, jar, dll and the Windows service.
The groups names are translated into sids (Security Identifiers) only at the startup of the application (versions tcp and dll).
I added the file Negoserver.chm to help to read the source. (I used SandCastel).
The file trunk-dll-02112009.zip is only renamed, but not changed.
The time-out are modified in the java and c# code. The JVM and CLR garbage collectors could be running...
Negosoerver uses only threads of the pool and the minimum number of threads is modified (2 -> 4). You can also modify this value in the parameters of Negoserver.
In java, WeakSocketsListForNtlm is no more used. If an NTLM authentication is not finished after 15 seconds, the socket used for this authentication between tomcat and Negoserver is closed. SSPauthentication cancel the timer used to close this socket if the authentication is finished.
There is a correction of a bug in the dll. There was a memory leak in the preceding versions with the dll.
The possibility to use tomcat 7 is added.
Version 15032011(March 15, 2011)
It is now possible to call, with tomcat 7,the methods request.login, request.authenticate, request.logout.
There are examples for tomcat 7 with the versions using JNA and TCP using request.login
The minimum version of dotnet with TCP is now dotnet 3.5. If it is a problem, send a message.
I only changed the examples for jna and tcp:
There is now 4 examples:
1)example (for tomcat 6 and 7 )with Windows accounts and groups (directory example)
2)example (for tomcat 6 and 7) with Windows accounts and groups defined with another Realm (directory explWithoutWinGroups) with a login page as the error 401 page. This page is defined in a free zone.
3) like the preceding example (directory explWithoutWinGroupsNoFree) but the error page is not defined in a free zone
4)example (only for tomcat 7) with fallback : Login/pwd with Windows accounts and groups (directory explOnlyT7FallbckUsrPwd)
(1) I replace v2 by jna and v3 by tcp.
(2) Fixed a bug in version using JNA
To avoid a resource leak when the methods DeleteSecurityContext and FreeCredentialsHandle are not called, I used the finalize method to call these mathods.
This can occur during NTLM (not Kerberos) authentication.
Indeed the NTLM authentication involves several exchanges between the client and the server.
If the client does not do all exchanges, these methods are not called.
But the class Structure given by JNA also has a finalize method to free allocated memory.
The order of the calls, by the JVM, of the finalize methods is undefined. Hence the bug.
(3) Refactoring NegoServer to facilitate the use of asynchrony with a future version of Dotnet.
(4) Check the example