4 Replies Latest reply on Sep 6, 2002 2:10 PM by Brian

    JBOSS 3.0.0/Tomcat 4.0.3 authentication doesn't work

    Pete Preston Newbie

      I'm trying to access a JBOSS app via a security-protected servlet but cannot get authentication to work. I'm using Tomcat 4.0.3 with JBOSS 3.0.0, integrated not standalone. I'm fairly confident the web.xml file is correct because when attempting to access the application main screen, a redirection to the login form occurs (as specified in the web.xml). However, you can type anything in here and access will be granted. Further, the servlet returns TRUE for userInRole() whatever parameter you give it. There are users and roles set up in tomcats default realm, but they are ignored. The online docs seem to refer to previous versions of JBOSS as most of the config files involved either no longer exist in JBOSS 3 or have been upgraded, so I'm rather in the dark...any help very much appreciated!