tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Christopher Schultz <ch...@christopherschultz.net>
Subject Re: authenticated but not authorized -- blank page
Date Mon, 05 May 2008 13:51:17 GMT
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Lloyd,

DIGLLOYD INC wrote:
| I don't read schemas well.  Perhaps if you would be so kind as to
| explain why it's wrong?  Is it because there is more than one
| <role-name> specified eg it needs to be:
|
| <security-role>
|    <role-name>guest1</role-name>
| </security-role>
| <security-role>
|     <role-name>guest2</role-name>
| </security-role>

That's exactly right. <security-role> looks like this in DTD-speak:

<!ELEMENT security-role (description?, role-name)>

The idea is that you can enumerate the roles and give them
human-readable descriptions. The servlet specification also states that
roles used in other places must be defined in a <security-role> section,
but most servers ignore this requirement.

- -chris
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkgfENUACgkQ9CaO5/Lv0PCSnQCfc44V5ZIMQBQeTsjRtF8/3wP1
SYsAoIsdtg4QLzjmx5rjpFyHIxGtfIzE
=ClD/
-----END PGP SIGNATURE-----

---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message