https://bz.apache.org/bugzilla/show_bug.cgi?id=55477
--- Comment #18 from Christopher Schultz <ch...@christopherschultz.net> --- How applicable is <security-role-ref> in web.xml, here? (In reply to Stefan Mayr from comment #16) > After a quick look into Michael's documentation I'm only concerned about the > placement of the default config in WEB-INF/role-mapping.properties. As an > admin I would expect to look for it in the conf folder. I would expect a file without any explicit path information to be in the application's WEB-INF/ directory if the component were to be configured in the applications' WEB-INF/web.xml file. If it is configured in conf/server.xml for the server, I might expect the config file to be found in the server's conf/ directory. I'm not sure it's possible to detect the difference between the two situations from within the code. Therefore, I'd prefer to default to relative-to-WEB-INF but also allow (as Michael suggests) arbitrary file:// URI support as well as allowing ${catalina.base} replacement in the path to make it easy to build an installation-relative path. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org