File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
The moose likes Web Component Certification (SCWCD/OCPJWCD) and the fly likes Question about security Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Certification » Web Component Certification (SCWCD/OCPJWCD)
Bookmark "Question about security" Watch "Question about security" New topic

Question about security

Carlos Rincon

Joined: Mar 28, 2005
Posts: 22
I want constraint my resource be secure, but I don't want use the tomcat-users.xml, instead I want use a table of a database, how do I do?

Other question, when I constraint a resource (/start) with data constraint CONFIDENTIAL, the web server (in this case Tomcat) turn the url to HTTPS, that is ok, but in this point in forward, all request I do, use HTTPS, what can I do if I ONLY want the initial resource (/start)use the HTTPS, and the others HTTP?

Thanks in advance.
Carlos Rincon

Joined: Mar 28, 2005
Posts: 22
Hello? Or in any other forum is the question appropiate for?
Sergey Tyulkin
Ranch Hand

Joined: May 10, 2005
Posts: 87
1) I'm not very competent in Tomcat configuration, but i think, you must configure a Database Realm for using database insetad of tomcat-users.xml. You can find an example of configuration in \CATALINA_HOME\conf\server.xml

Unfortunately, no thoughts about your second question.
I agree. Here's the link:
subject: Question about security
It's not a secret anymore!