Hi Rod, What's the specific error you're hitting (either on the client or recorded in your server logs)?
Have you tried defining your <security-constraint> at the top level in services-config.xml, and then just referencing it from your destination? Best, Seth ________________________________ From: flexcoders@yahoogroups.com [mailto:[EMAIL PROTECTED] On Behalf Of Rod Sent: Sunday, January 27, 2008 1:34 PM To: flexcoders@yahoogroups.com Subject: [flexcoders] Invalid login with LCDS RemoteObject custom authentication Hello I'm trying to secure a service used with LCDS through a RemothObject but I always get an invalid login. Here is my config. I'm using Tomcat 5.5.25 with a tomcat-users.xml like this : <?xml version='1.0' encoding='utf-8'?> <tomcat-users> <role rolename="manager"/> <role rolename="tomcat"/> <role rolename="admin"/> <role rolename="role1"/> <role rolename="sampleuser"/> <user username="tomcat" password="****" roles="tomcat"/> <user username="both" password="****" roles="tomcat,role1"/> <user username="admin" password="****t" roles="admin,manager"/> <user username="role1" password="****" roles="role1"/> <user username="toto" password="****" roles="sampleuser"/> </tomcat-users> In my remoting-config.xml : <destination id="secureService"> <properties> <source>services.SimpleService</source> <scope>application</scope> </properties> <security> <security-constraint> <auth-method>Custom</auth-method> <roles> <role>sampleuser</role> </roles> </security-constraint> </security> </destination> In my context.xml <Context path="/myApp" docBase="${catalina.home}/webapps/myApp" debug="0" privileged="true" antiResourceLocking="false" antiJARLocking="false"> <Transaction factory="org.objectweb.jotm.UserTransactionFactory" jotm.timeout="60"/> <Valve className="flex.messaging.security.TomcatValve"/> </Context> I've haded the flex-tomcat-common.jar in common/lib and flex-tomcat- server.jar in server/lib Any idea ? Thanks