tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Frank McCown <>
Subject Form-based authentication example broken in Tomcat 6.0
Date Wed, 02 May 2007 14:41:57 GMT
I noticed the MemoryRealm / form-based authentication example in Tomcat 
6.0 is broken.  The example works just fine in Tomcat 5.5, but in the 
migration to 6.0, it got broken.  According to the doc at

the app is supposed to be available at


but the URL is actually


The default contents of the conf/tomcat-users.xml file *should* be

   <user name="tomcat" password="tomcat" roles="tomcat" />
   <user name="role1"  password="tomcat" roles="role1"  />
   <user name="both"   password="tomcat" roles="tomcat,role1" />

but the file that ships with 6.0 is missing all the <user> tags.

And the server.xml file is missing the line:

<Realm className="org.apache.catalina.realm.MemoryRealm" />

Finally the web.xml file is using the wrong <url-pattern>.  It is set to


but should be


Making these changes will fix the example.  Hope someone working on 
Tomcat sees this post.


To start a new topic, e-mail:
To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message