In web.xml: you have to explicity define the roles:
Change: <security-constraint> <web-resource-collection> <web-resource-name>Login</web-resource-name> <url-pattern>/login/redirector</url-pattern> </web-resource-collection> <auth-constraint> <role-name>*</role-name> </auth-constraint> </security-constraint> TO: <security-constraint> <web-resource-collection> <web-resource-name>Login</web -resource-name> <url-pattern>/login/redirector</url-pattern> </web-resource-collection> <auth-constraint> <role-name>admin</role-name> <role-name>manager</role-name> <role-name>user</role-name> </auth-constraint> </security-constraint> And any other roles you have... HTH, Akshay On 8/3/06, O'Connell, Iain <[EMAIL PROTECTED]> wrote:
Hi Folks, I'm wondering if anybody can help me out. I'm having an issue running Jetspeed 2.1 in Tomcat. Basically what happens is that when I do a clean install and attempt to log in as the default user 'user' I get a HTTP 403 error. I was wondering if anybody had seen this error in the past or maybe if somebody could give me a pointer to where the 403 response would be being set... I'm working with a slightly customized version of Jetspeed 2.1 so I expect that this issue is specific to our build and not a common one. Thanks, Iain
