so far I tried to setup the following in web.xml: <error-page> | <error-code>403</error-code> | <location>/login.htm</location> | </error-page> | <security-constraint> | <web-resource-collection> | <web-resource-name>SSL Pages</web-resource-name> | <url-pattern>/secure/*</url-pattern> | <http-method>GET</http-method> | <http-method>PUT</http-method> | <http-method>POST</http-method> | </web-resource-collection> | <auth-constraint> | <role-name>AUTH</role-name> | </auth-constraint> | <user-data-constraint> | <transport-guarantee>CONFIDENTIAL</transport-guarantee> | </user-data-constraint> | </security-constraint>
but there is no simple way to set the role ("AUTH") for a logged in User (like in LoginAction), isn't it? A seam component to add such a role to a logged in user would be perfect! - Andreas View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3939007#3939007 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3939007 ------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user