tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From C├ędric Couralet <>
Subject Dynamic auth-constraint in web.xml ?
Date Fri, 03 May 2013 07:09:12 GMT

More of a servlet spec question than a tomcat one, and, from what I
read, a rather long shot, but is there a way to define auth-constraint
dynamically in web.xml?

For instance I'd like to have the following


with \1 being the (.*) in url-pattern ?

I know I can do it programmatically with something like
request.isUserInRole(). But I would like to define all  the webapp
security in another place than in code (if only not to forget anything
:) ).

I don't know if it relevant but I'm using tomcat 6.0.36 at the moment
on Windows 2003 with jdk 1.6_0.37.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message