> From: Liyi Meng [mailto:[EMAIL PROTECTED] > Subject: JAAS authentication goes OK, but 403 occurs on > requesting resources
> When login, authentication goes OK, but when requesting > a resource, I always get 403 access denied! What's in the <security-constraint>, <login-config>, and <security-role> sections of the web.xml for your webapp? Have you left out the <security-role> element, by any chance? > Below is the code how I populate User and Role then save in Subject Your code is very similar to mine, which does work, so I don't think the problem's there. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]