You need to add the new user in the Domain.xml, too. Tomcat uses the tomcat-users.xml to authenticate. Slide does authorization against it's user base, which you can build in Domain.xml.
On 7 Jul 2004 at 14:13, Sheldon Shi wrote: > I am new to Slide. I am trying hard to figure out how > role-based authentication work in Slide. I have uncommented > the security code at the end of slide's web.xml: > > <security-constraint> > <web-resource-collection> > <web-resource-name>DAV resource</web-resource-name> > <url-pattern>/*</url-pattern> > <http-method>COPY</http-method> > ... > <http-method>REBIND</http-method> > </web-resource-collection> > <auth-constraint> > <role-name>root</role-name> > </auth-constraint> > </security-constraint> > <login-config> > <auth-method>BASIC</auth-method> > </login-config> > <security-role> > <role-name>root</role-name> > </security-role> > > I have also added a user slideUser with role root in Tomcat's > tomcat-users.xml. The same configuration works for other web apps but > not for slide. I always get Forbidden message when accessing /slide/. > What am I missing? > > Thanks. > > Sheldon > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
