tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Mighty Tornado <mighty.torn...@gmail.com>
Subject Tomcat Security and Struts
Date Wed, 22 Apr 2009 13:42:10 GMT
Tomcat 6Struts 1.3
OS: MacOS X - Leopard

Hi,

I am trying to make sure my app requires a login. So I configured the
following in my deployment descriptor:

 <security-constraint>

   <web-resource-collection>

   <web-resource-name>admin</web-resource-name>

   <url-pattern>*.do</url-pattern>

   <http-method>POST</http-method>

   </web-resource-collection>



   <auth-constraint>

   <role-name>member</role-name>

   </auth-constraint>



   <user-data-constraint>

   <transport-guarantee>CONFIDENTIAL</transport-guarantee>

   </user-data-constraint>

  </security-constraint>



  <login-config>

   <auth-method>FORM</auth-method>

   <form-login-config>

   <form-login-page>/WEB-INF/JSP/login.jsp</form-login-page>

   <form-error-page>/WEB-INF/JSP/loginError.jsp</form-error-page>

   </form-login-config>

  </login-config>


However, when I follow the links in my app the login page doesn't come in.


Any ideas as to what I am doing wrong?


Thanks.

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message