Hi Michael, I'm happy that I was able to help you.
Users are defined in Slide (for ACL etc.). However, if security is enabled in web.xml, the servlet container, i.e. Tomcat, checks the user name and password. Therefor Tomcat must know the users, either by defining them again in Tomcat (e.g. tomcat- users.xml) or using SlideRealm. I'll forward you a very good message from Olli ([EMAIL PROTECTED], 21 Aug 2002), which explains this in more detail. ACL (Access Control List) make sure, only the right users access resources. There are two important things which I had discovered: 1. If a user shall have access to a resource, she must also have access to the parent of that resource, i.e. you can't start access in the middle of the tree. 2. If permissions are inherited from parent, authorized users will also have access to the children. You can't say: Stop inheritance downwards from this child on. Both lead to problems especially regarding versioning and access on /history. More, if you're interested... Andreas On 16 Oct 2002 at 22:45, Michael Wang wrote: > Andreas, > > Thank you for your help. I can follow your instructions and > get it to work. However, I do not know > > (1) How user and password are defined. When I login as > user root with some password, where does the system check to > authenticate. > > (2) What user has what access on the document tree structure? > > I am not lazy. If you can point me some documentation, I would > be glad to read. I really appreciate your help. Thanks. > > > From: "Andreas Probst" <[EMAIL PROTECTED]> > > To: "Slide Users Mailing List" <[EMAIL PROTECTED]> > > Sent: Tuesday, October 15, 2002 4:21 PM > > > > > Hello Michael, > > > > > > in the the web.xml you must uncomment the security constraint > > > (near end of file). After a restart of Slide your browser or > > > Slide client will ask you for a user name and password. To > > > change the user within Slide client you could logout (command > > > close) and open new (command open). If you are using a browser > > > you will have to start a new one. On Windows IE is the only > > > browser I know which always starts a new process, so I can have > > > several browsers with different users open. I don't know how it > > > is in Unix. > -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
