Subject: configuring security in Tomcat Posted By: aadz5 Post Date: 5/29/2006 11:00:38 AM Hi Guys, I have declarative security for my application.  When ever I go to a restricted page using Tomcat I go straight there without being propmted for a username and password.  Am I doing somthing wrong in my web.xml?  web.xml: <security-constraint>            <web-resource-collection>         <web-resource-name>CheckUsers</web-resource-name>                  <url-pattern>*.jsp</url-pattern>                  <http-method>GET</http-method>         <http-method>POST</http-method>     </web-resource-collection>          <auth-contraint>         <role-name>test</role-name>     </auth-contraint>          <user-data-constraint>CONFIDENTIAL</user-data-constraint>        </security-constraint>      <login-config>       <auth-method>FORM</auth-method>     <form-login-config>         <form-login-page>/login.jsp</form-login-page>         <form-error-page>/loginerror.jsp</form-error-page>     </form-login-config>   </login-config> could someone please advise? Thanks and Regards Adz - Its all about the JSPs baby!

Go to topic 44890

Return to index page 274
Return to index page 273
Return to index page 272
Return to index page 271
Return to index page 270
Return to index page 269
Return to index page 268
Return to index page 267
Return to index page 266
Return to index page 265