> From: Robert Jacobson [mailto:vvnxbdd...@snkmail.com] > Subject: Adding security constraint breaks sql functionality > > --- BEGIN web.xml for /changepass > <web-app> > <!-- Security constraint for the webapp --> > <security-constraint> > <web-resource-collection> > <web-resource-name>changepass Web</web-resource-name> > <url-pattern>/changepass/*</url-pattern>
Not sure what else is going on, but the above is incorrect for your webapp - the context name is *not* part of the <url-pattern>. What you're protecting with the above is requests to: http://host/changepass/changepass/[whatever] > <login-config> > <auth-method>BASIC</auth-method> > <realm-name>Tomcat Manager Application</realm-name> Is that the proper Realm reference? Might want to post an expurgated copy of your <Realm> declaration. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. ______________________________________________________________________ This email has been scanned by the MessageLabs Email Security System. For more information please visit http://www.messagelabs.com/email ______________________________________________________________________