Brandon Dove wrote:
I've been following the online documentation but I guess I'm notAccess control is a way of restricting user access to resources. Resources have Access Control Lists (ACL) attached to them.
clear on the difference between access control and
authentication and where/how it should be applied. As I
understand it access control determines the permissions that a
user has for certain actions. These access controls are
specified in Domain.xml correct?
ACL contains lists of privileges for a principals (a user or a role).
Initial ACLs are defined in Domain.xml. Later you can alter any resource ACL you want (if you have permission to do it) by WebdavResource.aclMethod()
So how does authentication differ?Authentication is about checking whether the user is really the one he stated he is. (Login procedure does authentication). When you disable authentication, you do not see Login promt when connecting to Slide. You act as "unauthenticated" principal then.
Reading the Security sectionDo you have jaas.config file under <Tomcat>/conf? Also you should have properly configured server.xml.
of the online docs it simply indicates that to enable
authentication one should uncomment the indicated lines in
web.xml but doesn't indicate any further JAAS setup is required.
I have quite limited experience with this so any
help/clarification is much appreciated.
If you downloaded a bundle from Slide site you shouldn't have any problem with this.
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
