Hi David,
Yeah, I see your url-pattern line is commented out.
It should be something like this...
<url-pattern>/jsp/security/protected/*</url-pattern>
Hope this helps,
dan
On Fri, 11 Jan 2002, Herzig, David wrote:
> > Dear Tomcat Users
> >
> > I tried to define a protected area, so I can only access my web
> > application with a username and password. The Tomcat example
> > /jsp/protected/security is working wothout problems, but not with my
> > application. I added the following lines to the web.xml file, but it's not
> > working. Can anybody give me some help?
> >
> > Many thanks in Advance
> > David
> >
> > File: web.xml
> > ...
> > <security-constraint>
> > <web-resource-collection>
> > <web-resource-name>Protected Area</web-resource-name>
> > <!-- Define the context-relative URL(s) to be protected -->
> > <!--<url-pattern>/*</url-pattern>-->
> > <!-- If you list http methods, only those methods are protected -->
> > <http-method>DELETE</http-method>
> > <http-method>GET</http-method>
> > <http-method>POST</http-method>
> > <http-method>PUT</http-method>
> > </web-resource-collection>
> > <auth-constraint>
> > <!-- Anyone with one of the listed roles may access this area -->
> > <role-name>tomcat</role-name>
> > <role-name>role1</role-name>
> > </auth-constraint>
> > </security-constraint>
> >
> >
> > <!-- Default login configuration uses BASIC authentication -->
> > <login-config>
> > <auth-method>BASIC</auth-method>
> > <realm-name>Restricted Stuff</realm-name>
> > </login-config>
> >
> >
>
> --
> To unsubscribe: <mailto:[EMAIL PROTECTED]>
> For additional commands: <mailto:[EMAIL PROTECTED]>
> Troubles with the list: <mailto:[EMAIL PROTECTED]>
>
--
To unsubscribe: <mailto:[EMAIL PROTECTED]>
For additional commands: <mailto:[EMAIL PROTECTED]>
Troubles with the list: <mailto:[EMAIL PROTECTED]>
