tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 5863] - Realm-Name in Login-Config
Date Thu, 24 Jan 2002 20:36:21 GMT
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG 
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://nagoya.apache.org/bugzilla/show_bug.cgi?id=5863>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND 
INSERTED IN THE BUG DATABASE.

http://nagoya.apache.org/bugzilla/show_bug.cgi?id=5863

Realm-Name in Login-Config





------- Additional Comments From halleux.jf@skynet.be  2002-01-24 20:36 -------
Still think this should be fixed... read on :

>From the spec. (13.2):

"It is recommended but not required that web containers...validate deployment 
descriptors against the DTD for STRUCTURAL CORRECTNESS."

and

"Additionally, it is RECOMMENDED that they provide a level of SEMANTIC 
checking."

They then give an example on the security-role-ref which should reference a 
valid role-name (I don't know if this is enforced in Tomcat).

So, as stricter container could reject such a descriptor, Tomcat should do its 
best to enforce this constraint.

--
To unsubscribe, e-mail:   <mailto:tomcat-dev-unsubscribe@jakarta.apache.org>
For additional commands, e-mail: <mailto:tomcat-dev-help@jakarta.apache.org>


Mime
View raw message