On Thursday 09 February 2006 04:05, Bill Barker wrote:
> "Alan Chandler" <[EMAIL PROTECTED]> wrote in message
> news:[EMAIL PROTECTED]
...
> This works correctly in TC 5.x. You need to reverse the order for TC 4.1.x
> (this is due to a change in the respective versions of the servlet spec
> they implement).
>
> > <security-constraint>
> > <web-resource-collection>
> > <web-resource-name>
> > Valid Users
> > </web-resource-name>
> > <url-pattern> /* </url-pattern>
> > </web-resource-collection>
> > <auth-constraint>
> > <role-name>*</role-name>
> > </auth-constraint>
> > </security-constraint>
> >
> > <security-constraint>
> > <web-resource-collection>
> > <web-resource-name>
> > Site Admin
> > </web-resource-name>
> > <url-pattern> /admin/* </url-pattern>
> > </web-resource-collection>
> > <auth-constraint>
> > <role-name>admin</role-name>
> > </auth-constraint>
> > </security-constraint>
> >
Since I am doing everything for TC 4.1.3 (Debian Stable) and just to be clear,
do you mean the following (ie swapping round the security-constraints)
<security-constraint>
<web-resource-collection>
<web-resource-name>
Site Admin
</web-resource-name>
<url-pattern> /admin/* </url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>admin</role-name>
</auth-constraint>
</security-constraint>
<security-constraint>
<web-resource-collection>
<web-resource-name>
Valid Users
</web-resource-name>
<url-pattern> /* </url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>*</role-name>
</auth-constraint>
</security-constraint>
Otherwise thank you very much that was very clear.
--
Alan Chandler
http://www.chandlerfamily.org.uk
Open Source. It's the difference between trust and antitrust.
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
