0 Replies Latest reply on Jan 11, 2012 11:52 AM by Eric Savidan

    Tomcat status page & security domain

    Eric Savidan Newbie



      I'd like to protect tomcat status page with a login/password authentication.


      To do so, I've created a security domain to status application :


        <application-policy name="status-console">


            <login-module code="org.jboss.security.auth.spi.UsersRolesLoginModule"


              <module-option name="usersProperties">props/status-console-users.properties</module-option>

              <module-option name="rolesProperties">props/status-console-roles.properties</module-option>





      and referenced it in deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml :



         <!-- A security domain that restricts access -->





      But, authentication does not work. I'm not prompted to provide login / password.


      Do you know if it's possible to implement such authentication ?


      Is my configuration wrong ?


      Thanks in advance for your support.