The realm is the security context itself. In tomcat, you pick a realm type based on the authentication mechanism in use - jdbc, ldap, jaas, xml (your example), etc.
Customer surveys are for companies who didn't pay proper attention to begin with.
Joined: Jun 07, 2007
Thanks for your reply.
OK - I thing I got it now. It looks like it's overloaded. Containers uses realm with regards to policy domain (xml, LDAP, etc...) and HTTP uses it with regards to the name of a resource in which the user is to be authenticated - so that's that string which you set up in DD in <realm-name> element (so it will pop up on the screen together with other elements asking you for password). I think it works only with BASIC authentication anyway ...