Answering my own question found the answer here: "This implementation is good enough for workgroups and small-scale public wikis." http://doc.jspwiki.org/2.4/wiki/Security#section-Security-CustomizingIdentityManagement (custom authentication) Seems that this might be a typo:"JSPWiki looks for a file called userdatabase.xml in WEB-INF/web.xml. " as I assume that it looks in the webinf folder...
On 9/27/07, Claudia Frers <[EMAIL PROTECTED]> wrote: > > Since I want to use JSPWiki in a real production environment, I have > carefully read the *Advanced Installation* section of > Andrews excellent notes here > (http://doc.jspwiki.org/2.4/wiki/InstallingJSPWiki#section-InstallingJSPWiki-AdvancedInstallation) > and here( > http://doc.jspwiki.org/2.4/wiki/Security#section-Security-IntegratingJSPWikiWithContainerManagedAuthentication > ). > > The document says that container authentication is the preferred method in > many corporate environments but it at no time warns against the use of > custom authentication. I want a KISS solution that is suitable for multi > wikis running as separate webapps on the internet. > > Can I safely use Custom authentication* and not sacrifice hopes for a > high-security configuration? > > Thx, > Claudia > > *which looks up and validates the user's id and password against those > stored in JSPWiki's UserDatabase > _______________________________________________ This is the Jspwiki-users mailing list, in which we discuss the stable release (even-numbered, 2.4.x, 2.6.x), and user-issues. For development discussion, please join jspwiki-dev. http://ecyrd.com/cgi-bin/mailman/listinfo/jspwiki-users http://www.jspwiki.org/JSPWikiMailingList
