tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From sihem <sihe...@yahoo.fr>
Subject security
Date Fri, 02 Nov 2001 11:28:10 GMT
Hi!

I am trying to protect the access to my servlets from
a browser. I used the code below in web.xml. Te user
is correctly authenticated (for exemple, when he wants
to access www.mydomain.com/servlet/HelloServlet).
But afterwards, Tomcat does not find the corresponding
servlet ("page cannot be found") , which is curious
because it finds it when there is no authentication.
In tomcat.log, there is this error message :
"Context log: path="" Error/loop in default error
handler R(  + /servlet + /AdminServlet) 401 null null
"

Please, Can someone tell what is missing in my
configuration ?

Thanks you by advance for your help!
Sihem

<?xml version="1.0" encoding="ISO-8859-1"?>
<!DOCTYPE web-app
    PUBLIC "-//Sun Microsystems, Inc.//DTD Web
Application 2.2//EN"
    "http://java.sun.com/j2ee/dtds/web-app_2.2.dtd">

<web-app>
<security-constraint>
	<web-resource-collection>
	<web-resource-name>secretprotect</web-resource-name>
	<url-pattern>/servlet/*</url-pattern>
	<http-method>GET</http-method>
	</web-resource-collection>

	<auth-constraint>
	<role-name>webmaster</role-name>
	</auth-constraint>
</security-constraint>

<login-config>
	<auth-method>
	BASIC
	</auth-method>
	<realm-name>
	test
	</realm-name>
</login-config>
</web-app>


___________________________________________________________
Do You Yahoo!? -- Une adresse @yahoo.fr gratuite et en fran├žais !
Yahoo! Courrier : http://courrier.yahoo.fr

--
To unsubscribe, e-mail:   <mailto:tomcat-dev-unsubscribe@jakarta.apache.org>
For additional commands, e-mail: <mailto:tomcat-dev-help@jakarta.apache.org>


Mime
View raw message