DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://nagoya.apache.org/bugzilla/show_bug.cgi?id=23766>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.
http://nagoya.apache.org/bugzilla/show_bug.cgi?id=23766 cannot configure SSL for form-based authentication ------- Additional Comments From [EMAIL PROTECTED] 2003-10-14 22:01 ------- The point I am making is that I only want to encrypt the login page. My web.xml snippet, as is, without the auth-constraint, worked in tomcat4. This functionality seems to have been dropped in tomcat5, due to changes in servlet 2.4 spec. BTW as I understand it, the security constraint in your config called 'login pages' with the url-pattern /security/, is superfluous and has no effect. Do you see what I mean? Take off the SSL transport guarantee from your protected.jsp, and your login page will not be encrypted either. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
