The examples application that comes with Tomcat has a working security constraint --
start up Tomcat and try to access
http://localhost:8080/examples/jsp/security/protected
Just out of curiousity, is "/videosearch" the context path of your web app? If so,
you need to change your URL
Craig:
Yes, that was it! Thanks!
To summarize for those that are still having trouble:
To make Tomcat require authentication for a give URL, add
these lines in the web-app tag in the web.xml file for
a tomcat application (NOTE: The URL pattern should not include the
application's context).
David:
I am trying to protect a servlet within my web application.
I want the rest of it to be accessible except for that
servlet.
Based on my reading the servlet 2.3 specification, I
added the following lines to my application's web.xml file:
security-role
role-nameadmin/role-name