aspose file tools*
The moose likes Web Component Certification (SCWCD/OCPJWCD) and the fly likes Q:security-role-ref Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of EJB 3 in Action this week in the EJB and other Java EE Technologies forum!
JavaRanch » Java Forums » Certification » Web Component Certification (SCWCD/OCPJWCD)
Bookmark "Q:security-role-ref" Watch "Q:security-role-ref" New topic


Henrik Krievs
Ranch Hand

Joined: Jan 05, 2004
Posts: 59
Howdy !

I'm a bit confused about <security-role-ref>.

If I have a user mapped to "manager" in tomcat-users.xml - and do a


- then a check on isUserInRole("admin") == true as is isUserInRole("manager") - fair enough !

If I add an additional mapping (same servlet)


- then the above check still responds with 2 times true !

What did I miss out her ?

/Rgds, Henrik
Something really fancy in the signature
I agree. Here's the link:
subject: Q:security-role-ref
Similar Threads
security-role-ref of Servlet element?
security - role - ref
Programmatic security
isUserInRole() doubt
Security roles in web.xml