We have now configured the "admin/*" related pages to require user authentication/authorization and I have updated the developer guide with instructions on how to configure tomcat to properly allow your users to access that page.
Please let me know if you have questions or find issues. [1] http://cwiki.apache.org/confluence/display/PHOTARK/PhotArk+Developer+Guide -- Luciano Resende http://people.apache.org/~lresende http://twitter.com/lresende1975 http://lresende.blogspot.com/
