Let me try to improve my question.
<security-constraint>
<web-resource-collection>
<web.resouorce-name>
TEST</web.resouorce-name>
<url-pattern>/MyPath/*</url-pattern>
<http-method>GET</http-method>
<web-resource-collection>
<auth-constraint>
<role-name>Member</role-name>
</auth-constraint>
<security-constraint>
Member is allowed to access to "/MyPath/MyServlet" resource via GET - TRUE
My questions are:
1-is Member allowed to access to "/MyPath/MyServlet" resource via *POST* ??
2-is Admin(role not speficied for that web-resource) allowed to access to
"/MyPath/MyServlet" resource via *GET* ??
3- is Admin(role not speficied for that web-resource) allowed to access to "/MyPath/MyServlet" resource via *POST* ??
Tks in advance.