tags:

views:

71

answers:

1
Q: 

Is there a bug in org.apache.catalina.realm.JDBCRealm?

http://www.docjar.com/html/api/org/apache/catalina/realm/JDBCRealm.java.html

To use this JDBCRealm we need two tables, user and user_role. 

user table - user_id, user_name, user_password
user_role table - user_id, role_id, user_name

Why user_name is required in user_role table when user_id is there as foreign key. The JDBCRealm could have used a join query to extract roles or a direct query as well if it stores the user_id from the previous query.

+1  A: 

Here's Tomcat 6 documentation for JDBCRealm.

user_id is NOT required in either table, nor is role_id. users table should have user_name and user_password columns; roles table should have user_name and role_name columns. Tables are linked via user_name.

The reason it's done this way (string rather then numeric ids) is because Principal had name as a String and isUserInRole() call takes role name as String as well.

ChssPly76  2009-07-31 07:20:39
You can even use just one table for users/roles.create table users {username varchar(64),password varchar(64),role varchar(64), UNIQUE KEY uname_key(username)); works fine.
nos  2009-07-31 07:42:44
nos that is not a normalized structure as a user can have multiple roles
Bhushan  2009-07-31 08:13:56

related questions

Java Time Zone is messed up
Eclipse on win64
Automate builds for Java RCP for deployment with JNLP
Why are professors or schools picking Java over C++ to teach to students?
Is there a real benefit of using J#?
Public/Popular Websites using JavaServer Faces
Why can't I use a try block around my super() call?
Accessing post variables using Java Servlets
Personal Linux web server
Is this really widening vs autoboxing?
How can I Java webstart multiple, dependent, native libraries?
Why can't I call toString() on a Java primitive?
How do I use Java to read from a file that is actively being written?
What code analysis tools do you use for your Java projects?
IllegalArgumentException or NullPointerException for a null parameter?
How do I configure and communicate with a serial port?
What is the best way to parse strings in Java
Getting started with a custom JXTA PeerGroup
Creating a custom button in Java
How to get started "writing" a code coverage tool?
Which Build-/Configuration Management Tool?
What is the difference between an int and an Integer in Java/C#?
What is the meaning of the type safety warning in certain Java generics casts?
How would you access Object properties from within an object method?
Converting CSV File to XML in Java