-
1. Re: Security ignored in JBoss 2.2.2 with Tomcat 3.2.2
starksm64 Sep 17, 2001 6:17 PM (in response to klusi)Read the following security tutorial
http://www.jboss.org/documentation/HTML/ch13s70.html -
2. Re: Security ignored in JBoss 2.2.2 with Tomcat 3.2.2
klusi Sep 18, 2001 4:40 AM (in response to klusi)I read this tutorial and installed the examples. They work fine.
In my servlets, no EJBs are used. I only want to secure my web application. I tried to use the example auth.conf-file from the tutorial and specified <security-domain>java:/jaas/example1</security-domain> in the jboss-web.xml deployment descriptor. But it still is ignored and I get into the application without being prompted for a password.
I wondered where to put the roles.properties and the users.properties files within a web-application. I put it in /WEB-INF/classes.
Any further ideas?
Regards
Thorsten -
3. Re: Security ignored in JBoss 2.2.2 with Tomcat 3.2.2
starksm64 Sep 18, 2001 11:39 AM (in response to klusi)What does your jboss-web.xml look like?
-
4. Re: Security ignored in JBoss 2.2.2 with Tomcat 3.2.2
klusi Sep 18, 2001 12:42 PM (in response to klusi)I figured out why the login didn't work correctly. My web.xml-file had an error in the <web-resource-collection>-section.
Now everything works fine.
Regards
Thorsten