axis-java-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Piotr Szymanski" <piotr.szyman...@pentacomp.com.pl>
Subject RE: Base security problem
Date Wed, 03 Jul 2002 07:58:46 GMT
Thanks but I have still problem...
This is my webapps folder in Tomcat: (dots are inserted for properly layout
only)
1)  \webapps\axis\WEB-INF\web.xml
2)  ..............................\MyService.jws

In server.xml everything settings are after installation like (I mean
MemoryRealm authorisation mechanism).
In 1) path in web.xml file I added some lines for my web application:

<security-constraint>
  <web-resource-collection>
    <web-resource-name>Protected Area</web-resource-name>
    <url-pattern>/axis/Serwis.jws</url-pattern>
    <http-method>GET</http-method>
    <http-method>POST</http-method>
  </web-resource-collection>
  <auth-constraint>
    <role-name>User</role-name>
  </auth-constraint>
</security-constraint>
<login-config>
  <auth-method>BASIC</auth-method>
  <realm-name>Serwis Protected Area</realm-name>
</login-config>

Unfortunately my client program can access to my Serwis.jws without
password.
Hm...Is this correct web.xml file, maybye I should add these lines to
onother?

I tried to add additional lines in \axis\web.xml file for my web
applications:
  <servlet>
    <servlet-name>AxisServletProtected</servlet-name>
    <display-name>Apache-Axis Servlet</display-name>

<servlet-class>org.apache.axis.transport.http.AxisServlet</servlet-class>
 </servlet>

 <servlet-mapping>
    <servlet-name>AxisServletProtected</servlet-name>
    <url-pattern>services/protected</url-pattern>
  </servlet-mapping>

When I triedt to startup Tomcat I got a message:
PARSE error at line 88 column 11
org.xml.sax.SAXParseException: The content of element type "web-app" must
match
"(icon?,display-name?,description?,distributable?,context-param*,servlet*,se
rvle
t-mapping*,session-config?,mime-mapping*,welcome-file-list?,error-page*,tagl
ib*,
resource-ref*,security-constraint*,login-config?,security-role*,env-entry*,e
jb-r
ef*)".

-------
Line 88 is line consist of element: </web-app>


I don't understand what I do wrong or what is not properly configured? I
have no idea what I can change else...

Help.
Regards.
Peter





Mime
View raw message