On Tue, Jan 6, 2009 at 9:13 PM, Diego Armando Gusava <diegogus...@gmail.com> wrote: > no man, example, email > > when u login, your username and password will be transport https, but > after that, you are in http! u dont need https because, you are only > reading messages(emails) >
Then just phrase your url-pattern in your security-constraint-section accordingly - should work. Gregor -- just because your paranoid, doesn't mean they're not after you... gpgp-fp: 79A84FA526807026795E4209D3B3FE028B3170B2 gpgp-key available @ http://pgpkeys.pca.dfn.de:11371 --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org