This week's book giveaway is in the OCAJP 8 forum. We're giving away four copies of OCA Java SE 8 Programmer I Study Guide and have Edward Finegan & Robert Liguori on-line! See this thread for details.
Not following at all. Both basic and form authentication are specified in the web.xml file, which has no concept of realms. I'm only familiar with Tomcat, where you specify realms in the server.xml file, which is independent of any actual method of authentication you might want to use. Can you clarify where you see the difference between basic auth and form auth?