I have a preliminary version of org.apache.tomcat.request.SimpleRealm
running that uses the LDAP functionality described by Mr. Wilcox.  I can
now run his example as listed on the bottom of page 498 of "Professional
JSP".

I am using the same configurations he describes for the interceptor and in
the authorization constraints in the web.xml file.  (My LDAP environment
parameters are hard-coded for the moment).

When I use this authenticator, it only asks for authentication for jsp
files.  Any other file (such as .html or .doc) can be accessed directly.
How do we tell Apache to let Tomcat do the authentications for all
document types?

jwhaller