You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@tomcat.apache.org by Steen Jost Jensen <sj...@itera.dk> on 2001/09/20 10:51:26 UTC

Authentication problems

Hi all,

I've been looking through the FAQ's for a solution to my problems but I cant
seem to be able to find any, so now I try here.

My problem is that my tomcat (3.2.3) doesnt authenticate users.

I mean I get the login/password box ok, but the user gets in regardless of
what is written in those fields.

I have inserted in web.xml :
<security-constraint>
   <web-resource-collection>
      <web-resource-name>Protected Area</web-resource-name>
      <url-pattern>/*</url-pattern>	
   </web-resource-collection>
   <auth-constraint>
      <role-name>home</role-name>
   </auth-constraint>
</security-constraint>
<login-config>
   <auth-method>BASIC</auth-method>
   <realm-name>Protected area</realm-name>
</login-config>

and I've added a user with the home role in
$TOMCAT_HOME/conf/tomcat-users.xml

What am I missing ?

/Steen Jensen