I'm on an older version of Tomcat, but I don't have a separate security-role
atttribute tag like his:
<!-- Security roles referenced by this web application -->
<security-role>
<role-name>guest1</role-name>
<role-name>guest2</role-name>
</security-role>
-----Original Message-----
From: Caldarale, Charles R [mailto:[EMAIL PROTECTED]
Sent: Friday, May 02, 2008 12:17 PM
To: Tomcat Users List
Subject: RE: authenticated but not authorized -- blank page
> From: Propes, Barry L [mailto:[EMAIL PROTECTED]
> Subject: RE: authenticated but not authorized -- blank page
>
> I actually have my role names defined within EACH constraint.
So does Lloyd:
> <!-- Define a Security Constraint on this Application -->
> <security-constraint>
> ...
> <auth-constraint>
> <role-name>guest1</role-name>
> </auth-constraint>
> </security-constraint>
>
> <security-constraint>
> ...
> <auth-constraint>
> <role-name>guest2</role-name>
> </auth-constraint>
> </security-constraint>
What's different about yours?
- Chuck
THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY
MATERIAL and is thus for use only by the intended recipient. If you
received this in error, please contact the sender and delete the e-mail
and its attachments from all computers.
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
