Anthony Jay wrote:
Hi,
Is is possible to have an application that serves content protected by
BASIC and FORM based auth?
i.e.
JSP protected by FORM
Servlets that process XML use http BASIC?
There is a rather extensive description available here :
http://tomcat.apache.org/tomcat-6.0-doc/realm-howto.html
and it also points you to the relevant section of the Servlet
Specification (2.4 or 2.5), section SRV 12.1 and following.
From reading it in diagonals, to me it seems possible to do that, if
the URLs for the two types of "servlets" above can be distinguished.
But you may want to wait for a more authoritative answer than mine.
The above is all about container-based security.
There is another "philosophy" available, namely servlet-filter based
security, which may do what you want.
The expert on that is Christopher, who will be having a look here in a
few hours.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
