Yes, i do have a role defined. I have included a snippet.
1) if i use a login.htm and I map the security-constraint to "*", it
works as expected. However, I want to use a login.asp as this includes
my site look and feel, header/navs and I don't really want to secure the
entire site.
a) change to login.jsp and it just stalls
2) if i remap the security to constraint to "/members/*" it isn't
securing everything below, /members. No login page ever appears and i
get the "/members/test.jsp", here i expect the login page.
<snippet from users.properties>
group.all=*
role.user=all
role.manager=all
user.testuser=te/Jys1784Cxo
I am hopeful we can get this working.
thanks for your time.
jeff
-----Original Message-----
From: Scott Stirling [mailto:[EMAIL PROTECTED]]
Sent: Saturday, July 22, 2000 5:45 PM
To: [EMAIL PROTECTED]
Subject: RE: problems with built-in authentication
Have you defined a role named "manager" and created users assigned to
that role
in users.properties?
Scott Stirling
-----Original Message-----
From: Jeff Jarrell [mailto:[EMAIL PROTECTED]]
Sent: Saturday, July 22, 2000 2:03 PM
To: '[EMAIL PROTECTED]'
Subject: problems with built-in authentication
Ok, So now I am trying to use authentication as described in the
developing web apps manual, chp38. (Jrun3, IIS4)
I am using a webapp on the default server, say "/webapp".
1) If I map URL pattern to "/members/*" in the web resource collection
and i try "/webapp/members/test.jsp", i get right to the test.jsp page,
no login form. (There actually is a "members" directory with a test.jsp
in it). I expect the login form here.
2) if i map the URL pattern to "*" to authenticate, as the manual
suggests,
a) i get the login page as I expect (when i try
(/webapp/index.jsp), if the login page is a .HTM.
b) if i set the login page in the web.xml to /login.jsp, i get
nothing, it just stalls with an opening page message in the browser
status bar.
I expect I should be able to use a JSP as a login page, and I should be
able to secure anything underneath the members directory. What am i
doing wrong?
Thanks, in advance.
jeff
web.xml included for reference:
<login-config>
<auth-method>
FORM
</auth-method>
<form-login-config>
<form-login-page>
/login.htm
</form-login-page>
<form-error-page>
/loginError.htm
</form-error-page>
</form-login-config>
</login-config>
<security-constraint>
<web-resource-collection>
<web-resource-name>Members Area</web-resource-name>
<url-pattern>/members/*</url-pattern>
<http-method>GET</http-method>
<http-method>POST</http-method>
<description>Members Area Description</description>
</web-resource-collection>
<auth-constraint>
<role-name>manager</role-name>
<description>managers only</description>
</auth-constraint>
</security-constraint>
------------------------------------------------------------------------
------
Archives: http://www.egroups.com/group/jrun-interest/
Unsubscribe:
http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/jrun_tal
k
or send a message to [EMAIL PROTECTED] with
'unsubscribe' in the body.
------------------------------------------------------------------------------
Archives: http://www.egroups.com/group/jrun-interest/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/jrun_talk
or send a message to [EMAIL PROTECTED] with 'unsubscribe' in the
body.
