-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Chuck,
Caldarale, Charles R wrote:
From: Nar Karapetyan [mailto:[EMAIL PROTECTED] Subject: An
issue concerning authentication in Tomcat hosted web application
This snippet says that any url ending with .action or .jsp
should be authenticated
Hello,
I'm trying to build an authentication mechanism using the security-constraint
tag in web.xml
E.G.
security-constraint
web-resource-collection
web-resource-nameMy App/web-resource-name
url-pattern*.action/url-pattern
url-pattern*.jsp/url-pattern
/web-resource-collection
From: Nar Karapetyan [mailto:[EMAIL PROTECTED]
Subject: An issue concerning authentication in Tomcat hosted
web application
This snippet says that any url ending with .action or
.jsp should be authenticated first, and works OK.
However, I need to exclude some specific urls which end