>From the DTD for web.xml: <!-- The auth-constraint element indicates the user roles that should be permitted access to this resource collection. The role-name used here must either correspond to the role-name of one of the security-role elements defined for this web application, or be the specially reserved role-name "*" that is a compact syntax for indicating all roles in the web application. <snip /> -->
So then.. it appears you need to define who 'tomcat' is, within a security-role element > -----Original Message----- > From: Rick Roberts [mailto:[EMAIL PROTECTED] > Sent: Tuesday, July 08, 2003 12:08 PM > To: Tomcat Users List > Subject: JDBC Realm Warning Message? > > > Can anyone tell me what this message means, and how to correct it? > > 2003-07-08 12:56:03 ContextConfig[/hd]: WARNING: Security role name > tomcat used in an <auth-constraint> without being defined in a > <security-role> > > > > Here is a copy of my WEB-INF/web.xml: > > > <?xml version="1.0" encoding="ISO-8859-1"?> > > <!DOCTYPE web-app > PUBLIC "-//Sun Microsystems, Inc.//DTD Web Application 2.3//EN" > "http://java.sun.com/j2ee/dtds/web-app_2_3.dtd";> > > <web-app> > <security-constraint> > <web-resource-collection> > <web-resource-name>Protected Area</web-resource-name> > <!-- Define the context-relative URL(s) to be protected --> > <url-pattern>/*</url-pattern> > <!-- If methods are listed, only those methods will be > protected --> > <http-method>DELETE</http-method> > <http-method>GET</http-method> > <http-method>POST</http-method> > <http-method>PUT</http-method> > </web-resource-collection> > <auth-constraint> > <!-- Anyone with one of the listed roles may access > this area --> > <role-name>tomcat</role-name> > </auth-constraint> > </security-constraint> > <login-config> > <auth-method>FORM</auth-method> > <realm-name>Form-Based Authentication Area</realm-name> > <form-login-config> > <form-login-page>/login.jsp</form-login-page> > <form-error-page>/login_error.jsp</form-error-page> > </form-login-config> > </login-config> > </web-app> > > > -- > ******************************************* > * Rick Roberts * > * Advanced Information Technologies, Inc. * > ******************************************* > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
