You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by Honza Spurný <sp...@master.cz> on 2004/05/03 10:35:15 UTC
How to set different security layer in subcontext?
Hi there,
please, I need to set unsecure connection in subcontext of secure context.
:)
It means: I have webapp1, that is set as:
<security-constraint>
<web-resource-collection>
<web-resource-name>webapp1</web-resource-name>
<url-pattern>/*</url-pattern>
<http-method>GET</http-method>
<http-method>POST</http-method>
</web-resource-collection>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>
What I need is, to set some subdirectory of webapp-direcotry to have no
security connection. So the directory DIR should be accessible also in http
requests.
So I would like to specify something like this:
<security-constraint>
<web-resource-collection>
<web-resource-name>unsecure directory</web-resource-name>
<url-pattern>/DIR/*</url-pattern>
<http-method>GET</http-method>
<http-method>POST</http-method>
</web-resource-collection>
<user-data-constraint>
<transport-guarantee>NONE</transport-guarantee>
</user-data-constraint>
</security-constraint>
I've tried this, but this doesn't work.
Would be anybody so kind and help.
Thanks a lot.
Best Regards
Honza Spurny
---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org