Hi all,
I am using FORM Based authentication. I have my web.xml as followed:
..................................
<web-app>
<security-constraint>
<web-resource-collection>
<web-resource-name>CSD_COS_TRACKER</web-resource-name>
<url-pattern>/csd/marketing/clinicaloutcomestudies/tracker/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>csd_cos</role-name>
</auth-constraint>
</security-constraint>
<login-config>
<auth-method>FORM</auth-method>
<form-login-config>
<form-login-page>/security/login.jsp</form-login-page>
<form-error-page>/security/login.jsp?login=false</form-error-page>
</form-login-config>
</login-config>
<security-role>
<role-name>csd_cos</role-name>
</security-role>
</web-app>
..........................................
and my tomcat-user.xml defined:
.................
<tomcat-users>
<user name="tomcat" password="tomcat" roles="tomcat" />
<user name="role1" password="tomcat" roles="role1" />
<user name="both" password="tomcat" roles="tomcat,role1" />
<user name="user" password="password" roles="csd_cos" />
</tomcat-users>
......................
and my uriworkermap.properties as below:
.......................
# *********** Begin uriworkermap.properties ***
#
# Simple worker configuration file
#
# Mount the Servlet context to the ajp13 worker
/servlet/*=ajp13
/*.jsp=ajp13
# Mount the examples context to the ajp13 worker
/examples/*=ajp13
# Advanced mount of the examples context
# /examples/servlet/*=ajp13
# Mount the security context to the ajp12 worker
/security/*=ajp13
/intranet/csd/marketing/clinicaloutcomestudies/tracker/*=ajp13
# ************* End uriworkermap.properties ****
..........................
What am I missing? I got the area locked down but the login form is not
loaded when user access the secured area.
Thanks very much for helping.
Bao-Ha Dam Bui
[EMAIL PROTECTED]
S. Jude Medical, Inc
651.765.1018
