To my knowledge, the url-pattern begins *after* the context. So to protect your entire application use:
<url-pattern>/*</url-pattern> To protect struts actions, protect the same <url-pattern> that you're using for your mapping to your action class. HTH, Matt --- Satish Jeejula <[EMAIL PROTECTED]> wrote: > David, > > I have configured server.xml correctly. > > This is what I had to do to make it work. > > In my web.xml file of my web application, the > security-constraint/web-resource-name/url-pattern element was set to my > context. It looks like the security is applicable to anything under that > context. > > For example, if my context 'url-pattern' is /myContext and if I set the > security-constraint/web-resource-name/url-pattern to /myContext .. it does > not work. > > So I changed the url-pattern to /myContext/jsp/*. So whenever I try to > access my index.jsp page, it will challenge the user. > > I am not sure if I am doing it the right way .. but this is what I have > observed and this is how it working. > > Any suggestions are appreciated. > > thanks, > Satish > > > -----Original Message----- > From: Struts Newsgroup [mailto:[EMAIL PROTECTED]] > Sent: Thursday, March 07, 2002 7:25 AM > To: [EMAIL PROTECTED] > Subject: Re: Struts Web App Challenging user with BASIC Auth > > > Subject: Re: Struts Web App Challenging user with BASIC Auth > From: "David Bolsover" <[EMAIL PROTECTED]> > === > Satish > > Have you correctly configured the Tomcat server.xml file? > > David Bolsover > > > "Satish Jeejula" <[EMAIL PROTECTED]> wrote in message > news:[EMAIL PROTECTED]... > > Hi All, > > > > I have a web application using struts running under apache\tomcat3.3 > > configuration. I want to make this app challenge the user using HTTP > BASIC > > Auth scheme. > > > > The admin context that comes with tomcat does implement this. But the > admin > > is not using struts. > > > > I have added security-constraint element to my web.xml file for my > > application. But still it does not challenge me? > > > > Is there anything else that I need to configure for the application using > > struts to challenge?? > > > > Any pointers that will lead me to a solution. > > > > Any help is appreciated. > > > > Thanks, > > Satish > > > > -- > > To unsubscribe, e-mail: > <mailto:[EMAIL PROTECTED]> > > For additional commands, e-mail: > <mailto:[EMAIL PROTECTED]> > > > > > > -- > To unsubscribe, e-mail: > <mailto:[EMAIL PROTECTED]> > For additional commands, e-mail: > <mailto:[EMAIL PROTECTED]> > > -- > To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> > For additional commands, e-mail: <mailto:[EMAIL PROTECTED]> > __________________________________________________ Do You Yahoo!? Try FREE Yahoo! Mail - the world's greatest free email! http://mail.yahoo.com/ -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>