Register / Login
Win a copy of
Design for the Mind
this week in the
Web Component Certification (OCEJWCD)
posted 11 years ago
I'm a bit confused about <security-role-ref>.
If I have a user mapped to "manager" in tomcat-users.xml - and do a
- then a check on isUserInRole("admin") == true as is isUserInRole("manager") - fair enough !
If I add an additional mapping (same
- then the above check still responds with 2 times true !
What did I miss out her ?
Something really fancy in the signature
Security roles in web.xml
security - role - ref
security-role-ref of Servlet element?