try adding root,user and guest roles at tomcat-users.xml and users for each role: <role rolename="root"/> <role rolename="guest"/> <role rolename="user"/> <user username="root" password="root" roles="tomcat,manager,root"/> <user username="guest" password="root" roles="tomcat,guest"/> <user username="john" password="root" roles="tomcat,user"/>
Which version of Tomcat are you using ? Try it with 4.1.3 or higher Regards, El mar, 09-03-2004 a las 17:58, Gaurav Khanna escribi�: > Hi, > Thanks for answering. I do have the users defined in tomcat-users.xml as: > <tomcat-users> > <role rolename="manager"/> > <role rolename="role1"/> > <role rolename="tomcat"/> > <user username="admin" password="admin" roles="manager"/> > <user username="root" password="root" roles="manager"/> > <user username="both" password="tomcat" roles="tomcat,role1"/> > <user username="role1" password="tomcat" roles="role1"/> > <user username="tomcat" password="tomcat" roles="tomcat"/> > </tomcat-users> > > > Please see the root user. This is the user that i use to log in. I am now getting a > 403 - Access is forbidden. > > Any ideas? > > I am reproducing the domain.xml below: > > > <?xml version="1.0"?> > <slide logger="org.apache.slide.util.logger.SimpleLogger" logger-level="6" > default="slide"> > <namespace name="slide"> > <definition> > <store name="jdbc"> > <nodestore classname="org.apache.slide.store.impl.rdbms.JDBCStore"> > <parameter name="driver">org.gjt.mm.mysql.Driver</parameter> > <parameter > name="adapter">org.apache.slide.store.impl.rdbms.MySqlRDBMSAdapter</parameter> > <parameter name="url">jdbc:mysql://localhost:3306/slide1 > </parameter> > <parameter name="user">root > </parameter> > <parameter name="password"> > </parameter> > <parameter name="compress">false</parameter> > </nodestore> > <securitystore> > <reference store="nodestore"/> > </securitystore> > <lockstore> > <reference store="nodestore"/> > </lockstore> > <revisiondescriptorsstore> > <reference store="nodestore"/> > </revisiondescriptorsstore> > <revisiondescriptorstore> > <reference store="nodestore"/> > </revisiondescriptorstore> > <contentstore classname="org.apache.slide.store.impl.rdbms.JDBCStore"> > <parameter name="driver">org.gjt.mm.mysql.Driver</parameter> > <parameter > name="adapter">org.apache.slide.store.impl.rdbms.MySqlRDBMSAdapter</parameter> > <parameter name="url">jdbc:mysql://localhost:3306/slide1 > </parameter> > <parameter name="user">root > </parameter> > <parameter name="password"> > </parameter> > <parameter name="compress">false</parameter> > </contentstore> > </store> > <scope match="/" store="jdbc"/> > </definition> > <configuration> > <!-- Actions mapping --> > <read-object>/actions/read</read-object> > <create-object>/actions/write</create-object> > <remove-object>/actions/write</remove-object> > <grant-permission>/actions/write-acl</grant-permission> > <revoke-permission>/actions/write-acl</revoke-permission> > <read-permissions>/actions/read-acl</read-permissions> > > <read-own-permissions>/actions/read-current-user-privilege-set</read-own-permissions> > <lock-object>/actions/write</lock-object> > <kill-lock>/actions/unlock</kill-lock> > <read-locks>/actions/read</read-locks> > <read-revision-metadata>/actions/read</read-revision-metadata> > > <create-revision-metadata>/actions/write-properties</create-revision-metadata> > > <modify-revision-metadata>/actions/write-properties</modify-revision-metadata> > > <remove-revision-metadata>/actions/write-properties</remove-revision-metadata> > <read-revision-content>/actions/read</read-revision-content> > <create-revision-content>/actions/write-content</create-revision-content> > <modify-revision-content>/actions/write-content</modify-revision-content> > <remove-revision-content>/actions/write-content</remove-revision-content> > <bind-member>/actions/bind</bind-member> > <unbind-member>/actions/unbind</unbind-member> > <!-- Paths configuration --> > <userspath>/users</userspath> > <rolespath>/roles</rolespath> > <actionspath>/actions</actionspath> > <filespath>/files</filespath> > <parameter name="dav">true</parameter> > <parameter name="standalone">true</parameter> > <parameter name="acl_inheritance_type">path</parameter> > <!-- Nested roles: 0 means no nesting (default), 1 means one sublevel, > etc. --> > <parameter name="nested_roles_maxdepth">0</parameter> > </configuration> > <data> > <objectnode classname="org.apache.slide.structure.SubjectNode" uri="/"> > <!-- Subject can be: > any user "all" > authenticated user "authenticated" > unauthenticated user "unauthenticated" > self "self" > owner of resource "owner" > a user "/users/john" > a role "/roles/admin" > --> > <!-- <permission action="all" subject="/roles/root" > inheritable="true"/> > --> > <permission action="all" subject="/roles/root" inheritable="true"/> > <permission action="all" subject="/users/root" inheritable="true"/> > <permission action="all" subject="/users/admin" inheritable="true"/> > <permission action="/actions/read-acl" subject="all" > inheritable="true" negative="true"/> > <permission action="/actions/write-acl" subject="all" > inheritable="true" negative="true"/> > <permission action="/actions/unlock" subject="all" > inheritable="true" negative="true"/> > <permission action="/actions/read" subject="all" inheritable="true"/> > <!-- /users --> > <objectnode classname="org.apache.slide.structure.SubjectNode" > uri="/users"> > <permission action="all" subject="self" inheritable="true"/> > <!-- <permission action="all" subject="unauthenticated" > inheritable="true" negative="true"/>--> > <permission action="all" subject="/users/root" > inheritable="true"/> > <permission action="all" subject="/users/admin" inheritable="true"/> > <!-- /users/root represents the administrator --> > <objectnode classname="org.apache.slide.structure.SubjectNode" > uri="/users/root"> > <revision> > <property namespace="http://jakarta.apache.org/slide/"; > name="password">root</property> > </revision> > </objectnode> > <objectnode classname="org.apache.slide.structure.SubjectNode" > uri="/users/admin"> > <revision> > <property > namespace="http://jakarta.apache.org/slide/"; name="password">admin</property> > </revision> > </objectnode> > <!-- /users/john and /users/john2 represent authenticated users --> > <objectnode classname="org.apache.slide.structure.SubjectNode" > uri="/users/john"> > <revision> > <property namespace="http://jakarta.apache.org/slide/"; > name="password"/> > </revision> > </objectnode> > <objectnode classname="org.apache.slide.structure.SubjectNode" > uri="/users/john2"> > <revision> > <property namespace="http://jakarta.apache.org/slide/"; > name="password"/> > </revision> > </objectnode> > <!-- /users/guest represents an authenticated or unauthenticated > guest user --> > <objectnode classname="org.apache.slide.structure.SubjectNode" > uri="/users/guest"> > <revision> > <property namespace="http://jakarta.apache.org/slide/"; > name="password"/> > </revision> > </objectnode> > </objectnode> > <!-- /roles --> > <objectnode classname="org.apache.slide.structure.SubjectNode" > uri="/roles"> > <!-- <permission action="all" subject="self" > inheritable="true"/>--> > <permission action="all" subject="unauthenticated" > inheritable="true"/> > <!-- <permission action="all" subject="unauthenticated" > inheritable="true" negative="true"/>--> > <objectnode classname="org.apache.slide.structure.SubjectNode" > uri="/roles/root"> > <revision> > <property name="group-member-set"><![CDATA[<D:href > xmlns:D='DAV:'>/users/root</D:href>]]></property> > </revision> > </objectnode> > <objectnode classname="org.apache.slide.structure.SubjectNode" > uri="/roles/user"> > <revision> > <property name="group-member-set"><![CDATA[<D:href > xmlns:D='DAV:'>/users/john</D:href><D:href > xmlns:D='DAV:'>/users/john2</D:href><D:href > xmlns:D='DAV:'>/users/root</D:href>]]></property> > </revision> > </objectnode> > <objectnode classname="org.apache.slide.structure.SubjectNode" > uri="/roles/guest"> > <revision> > <property name="group-member-set"><![CDATA[<D:href > xmlns:D='DAV:'>/users/guest</D:href>]]></property> > </revision> > </objectnode> > </objectnode> > <!-- action --> > <objectnode classname="org.apache.slide.structure.ActionNode" > uri="/actions"> > <objectnode classname="org.apache.slide.structure.ActionNode" > uri="/actions/read"> > <revision> > <property name="privilege-member-set"><![CDATA[<D:href > xmlns:D='DAV:'>/actions/read-acl</D:href> <D:href > xmlns:D='DAV:'>/actions/read-current-user-privilege-set</D:href>]]></property> > </revision> > </objectnode> > <objectnode classname="org.apache.slide.structure.ActionNode" > uri="/actions/read-acl"> > <revision> > <property name="privilege-member-set"/> > </revision> > </objectnode> > <objectnode classname="org.apache.slide.structure.ActionNode" > uri="/actions/read-current-user-privilege-set"> > <revision> > <property name="privilege-member-set"/> > </revision> > </objectnode> > <objectnode classname="org.apache.slide.structure.ActionNode" > uri="/actions/write"> > <revision> > <property name="privilege-member-set"><![CDATA[<D:href > xmlns:D='DAV:'>/actions/write-acl</D:href> <D:href > xmlns:D='DAV:'>/actions/write-properties</D:href> <D:href > xmlns:D='DAV:'>/actions/write-content</D:href>]]></property> > </revision> > </objectnode> > <objectnode classname="org.apache.slide.structure.ActionNode" > uri="/actions/write-acl"> > <revision> > <property name="privilege-member-set"/> > </revision> > </objectnode> > <objectnode classname="org.apache.slide.structure.ActionNode" > uri="/actions/write-properties"> > <revision> > <property name="privilege-member-set"/> > </revision> > </objectnode> > <objectnode classname="org.apache.slide.structure.ActionNode" > uri="/actions/write-content"> > <revision> > <property name="privilege-member-set"><![CDATA[<D:href > xmlns:D='DAV:'>/actions/bind</D:href> <D:href > xmlns:D='DAV:'>/actions/unbind</D:href>]]></property> > </revision> > </objectnode> > <objectnode classname="org.apache.slide.structure.ActionNode" > uri="/actions/bind"> > <revision> > <property name="privilege-member-set"/> > </revision> > </objectnode> > <objectnode classname="org.apache.slide.structure.ActionNode" > uri="/actions/unbind"> > <revision> > <property name="privilege-member-set"/> > </revision> > </objectnode> > <objectnode classname="org.apache.slide.structure.ActionNode" > uri="/actions/unlock"> > <revision> > <property name="privilege-member-set"/> > </revision> > </objectnode> > </objectnode> > <objectnode classname="org.apache.slide.structure.SubjectNode" > uri="/files"> > <permission action="all" subject="unauthenticated" > inheritable="true"/> > <permission action="/actions/write" subject="/roles/user" > inheritable="true"/> > <permission action="/actions/read-acl" subject="owner" > inheritable="true"/> > </objectnode> > <!-- DeltaV: default history and workspace paths --> > <objectnode classname="org.apache.slide.structure.SubjectNode" > uri="/history"> > <permission action="all" subject="unauthenticated" > inheritable="true"/> > <permission action="/actions/write" subject="/roles/user" > inheritable="true"/> > <permission action="/actions/read-acl" subject="owner" > inheritable="true"/> > </objectnode> > <objectnode classname="org.apache.slide.structure.SubjectNode" > uri="/workspace"> > <permission action="all" subject="unauthenticated" > inheritable="true"/> > <permission action="/actions/write" subject="/roles/user" > inheritable="true"/> > <permission action="/actions/read-acl" subject="owner" > inheritable="true"/> > </objectnode> > <objectnode classname="org.apache.slide.structure.SubjectNode" > uri="/workingresource"> > <permission action="all" subject="unauthenticated" > inheritable="true"/> > <permission action="/actions/write" subject="/roles/user" > inheritable="true"/> > <permission action="/actions/read-acl" subject="owner" > inheritable="true"/> > </objectnode> > </objectnode> > </data> > </namespace> > <!-- > DeltaV global parameters > ======================== > * historypath (mandatory=no, default="/history"): > Specifies a Slide path which determines the location where this DeltaV > server stores history data. > * workspacepath (mandatory=no, default="/workspace"): > Specifies a Slide path which determines the location where this DeltaV > server allows workspaces to reside. > * workingresourcepath (mandatory=no, default="/workingresource"): > Specifies a Slide path which determines the location where this DeltaV > server stores working resources. > * auto-version (mandatory=no, default="checkout-checkin"): > Controls the DeltaV auto-version behaviour. > * auto-version-control (mandatory=no, default="false"): > Indicates if a resource just created by a PUT should be set under > version-control. > * versioncontrol-exclude (mandatory=no, default=""): > Specifies a Slide path which determines resources which are excluded from > version-control. > The default value "" makes no path being excluded. > * checkout-fork (mandatory=no, default="forbidden"): > Controls the DeltaV check-out behaviour when a version is already > checked-out or has a successor. > * checkin-fork (mandatory=no, default="forbidden"): > Controls the DeltaV check-out behaviour when a version has already a > successor. > * standardLivePropertiesClass (mandatory=no, > default="org.apache.slide.webdav.util.resourcekind.AbstractResourceKind"): > Determines the "agent" knowing about what the standard live properties are. > It should be a loadable class containing the following static methods: > - boolean isLiveProperty(String propName) > - boolean isProtectedProperty(String propName) > - boolean isComputedProperty(String propName) > - Set getAllLiveProperties() > - Set getAllProtectedProperties() > - Set getAllComputedProperties() > * uriRedirectorClass (mandatory=no, > default="org.apache.slide.webdav.util.DeltavUriRedirector"): > Determines the URI redirector class. The DeltaV URI redirector is in > charge of the following redirections: > - version URI to history URI, e.g. /history/2/1.4 to /history/2 > - latest revision number for history resource to 0.0 > - latest revision number for version resource to last URI token, > e.g. /history/2/1.4 to 1.4 > It should be a loadable class containing the following static methods: > - String redirectUri(String uri) > - NodeRevisionNumber redirectLatestRevisionNumber(String uri) > --> > <parameter name="historypath">/history</parameter> > <parameter name="workspacepath">/workspace</parameter> > <parameter name="workingresourcepath">/workingresource</parameter> > <parameter name="auto-version">checkout-checkin</parameter> > <parameter name="auto-version-control">false</parameter> > <parameter name="versioncontrol-exclude"/> > <parameter name="checkout-fork">forbidden</parameter> > <parameter name="checkin-fork">forbidden</parameter> > </slide> > > > > > --------------------------------- > Do you Yahoo!? > Yahoo! Search - Find what youre looking for faster. -- Juan Andr�s Bentancour <[EMAIL PROTECTED]> --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
