On Sat, 31 Mar 2001, Joe Emenaker wrote:
> This one's got me stumped.
>
> In web.xml, you can have a <security-constraint> section. Within that,
> there's <web-resource-collection> and, with that, you can have a section
> called <web-resource-name>, but I can't find any documentation that says
> what it's used for. All of the documentation I've found says that it
> defines the name of the resource, but that's it.
>
> With other tags, the tag contents have to correspond to something
> somewhere else (like <auth-constraint> having to match user entries
> elsewhere) or they are something that is shown to the user (like
> <realm-name> showing up on the name/password box your browser shows you
> when you use "BASIC" authentication).
>
> But, in the case of <web-resource-name>, I can't find any rules saying
> that the name has to match anything anywhere else and I also haven't
> been able to get Tomcat to display the name to me in any of its
> responses. So, what DOES Tomcat use it for?
>
> - Joe
>
>
In application servers that have GUI deployment tools, the
<web-resource-name> value will probably be what the tool uses to
distinguish this resource from other resources you have security
constraints defined on. Tomcat doesn't use it for anything.
Craig McClanahan
