Ok, So now I am trying to use authentication as described in the
developing web apps manual, chp38. (Jrun3, IIS4)
I am using a webapp on the default server, say "/webapp".
1) If I map URL pattern to "/members/*" in the web resource collection
and i try "/webapp/members/test.jsp", i get right to the test.jsp page,
no login form. (There actually is a "members" directory with a test.jsp
in it). I expect the login form here.
2) if i map the URL pattern to "*" to authenticate, as the manual
suggests,
a) i get the login page as I expect (when i try
(/webapp/index.jsp), if the login page is a .HTM.
b) if i set the login page in the web.xml to /login.jsp, i get
nothing, it just stalls with an opening page message in the browser
status bar.
I expect I should be able to use a JSP as a login page, and I should be
able to secure anything underneath the members directory. What am i
doing wrong?
Thanks, in advance.
jeff
web.xml included for reference:
<login-config>
<auth-method>
FORM
</auth-method>
<form-login-config>
<form-login-page>
/login.htm
</form-login-page>
<form-error-page>
/loginError.htm
</form-error-page>
</form-login-config>
</login-config>
<security-constraint>
<web-resource-collection>
<web-resource-name>Members Area</web-resource-name>
<url-pattern>/members/*</url-pattern>
<http-method>GET</http-method>
<http-method>POST</http-method>
<description>Members Area Description</description>
</web-resource-collection>
<auth-constraint>
<role-name>manager</role-name>
<description>managers only</description>
</auth-constraint>
</security-constraint>
------------------------------------------------------------------------------
Archives: http://www.egroups.com/group/jrun-interest/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/jrun_talk
or send a message to [EMAIL PROTECTED] with 'unsubscribe' in the
body.
