tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Mark Thomas <>
Subject Re: Tomcat Built-in WinAuth - NEW THREAD
Date Tue, 05 Mar 2013 19:18:36 GMT
On 05/03/2013 16:31, Chris Fors wrote:
> I wish to allow any authenticated domain user

There is pure web.xml (until Tomcat 8 and Servlet 3.1) way of doing
this. (Aside. Once this has been implemented, we should look at
back-porting the new ** feature to earlier versions).

> role-name>*</role-name>

That doesn't do what you think it does. (As you would know if you had
read the relevant part of the Servlet spec.)

There are a couple of ways around this. I suggest you look at the
allRolesMode attribute of your Realm.


To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message