Re: doubts about tomcat form based authentication

2009-10-20 Thread Curtis Garman
resource not found. In mozilla it just displays a blank page. regards, nirvan. -- View this message in context: http://www.nabble.com/doubts-about-tomcat-form-based-authentication-tp25970503p25970503.html Sent from the Tomcat - User mailing list archive at Nabble.com

Re: doubts about tomcat form based authentication

2009-10-20 Thread Nirvann
getting HTTP 404 - File not found in IE and blank page in Mozilla. -- View this message in context: http://www.nabble.com/doubts-about-tomcat-form-based-authentication-tp25970503p25975955.html Sent from the Tomcat - User mailing list archive at Nabble.com

Re: doubts about tomcat form based authentication

2009-10-20 Thread Markus Schönhaber
Nirvann: I mean't authorization. Consider a scenario as follows. There are two users, admin and user. Consider two pages adminPage.jsp and userPage.jsp. Admin has rights to both the pages but user can access only userPage.jsp. Lets assume that the user logs in as user (not admin) and accesses

Re: doubts about tomcat form based authentication

2009-10-20 Thread Curtis Garman
I would also google making internet explorer display your error page ...this is something I learned in the apache cookbook...IE will display it's own error message if your error page isn't at least 512 bytes...anyway you might want to research this a little Did you define a custom 403 page? Are

Re: doubts about tomcat form based authentication

2009-10-20 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Nirvann, On 10/20/2009 2:50 AM, Nirvann wrote: The first thing is what mechanism can be used to handle authorization errors. For authentication we have control of jsp pages (Login and Login error pages). But there is nothing to let users know that

Re: doubts about tomcat form based authentication

2009-10-20 Thread Curtis Garman
On Tue, Oct 20, 2009 at 10:55 AM, Christopher Schultz ch...@christopherschultz.net wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Nirvann, On 10/20/2009 2:50 AM, Nirvann wrote: The first thing is what mechanism can be used to handle authorization errors. For authentication we have

Re: doubts about tomcat form based authentication

2009-10-20 Thread Nirvann
. regards, nirvan. -- View this message in context: http://www.nabble.com/doubts-about-tomcat-form-based-authentication-tp25970503p25984106.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To unsubscribe, e-mail

Re: doubts about tomcat form based authentication

2009-10-20 Thread Josh Gooding
in web.xml file but the page was not at proper location. Hence I was getting 404 file not found. Now I can access the role error page for authorization error. Thanks a lot for all your insights. regards, nirvan. -- View this message in context: http://www.nabble.com/doubts-about-tomcat-form-based