Can you provide a link to the Servlet Spec the to which section you are referring to.
On Sun, Aug 30, 2015 at 9:55 PM, Mark Thomas <ma...@apache.org> wrote: > On 29/08/2015 22:26, Sreyan Chakravarty wrote: > > Okay I have just started to use Realms and container managed > authentication > > and I am confused about as how to specify a home page. > > Go and read the Servlet spec for how FORM authentication works. > > Then read the section on how to specify security constraints. > > Mark > > > > > > Let me explain-: > > > > <web-resource-collection> > > <web-resource-name>TECHERS</web-resource-name> > > <url-pattern>/teacher/success.jsp</url-pattern> > > <http-method>GET</http-method> > > <http-method>POST</http-method> > > </web-resource-collection> > > > > Here the only resource protected is > > > > /teacher/success.jsp page > > > > Now what if I wanted to add more pages to protect like > > > > /teacher/upload.jsp > > > > Do I add another <url-pattern> to the same <web-resource-collection> ? Or > > do I create another web-resource collection for /teacher/upload.jsp? > > > > Also if they are in the same in the <web-resource-collection> how does > > Tomcat know to go to /teacher/success.jsp and not /teacher/upload.jsp ? > > > > I mean all forms will have "j_security_check" as action, so which page > do I > > go to after login if multiple pages are protected ? > > > > How do I say that success.jsp is the home page and all other pages are > > protected but not home pages ? > > > > Regards > > Sreyan Chakravarty > > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org > >
