I have a question related to form authentication.
<realm-name> element is not allowed within <login-config> element when <auth-method> is FORM.
But when i ran an example having login config element , there was no error on front end and authentication went fine.
Also in Tomcat logs, i did not got any error
This is confusing as let us say if we get an question in exam whether adding <realm-name> for FORM authentication will produce an error or not then what should i answer. Compilation error ? or No compilation error ?
The ultimate reference on what must -and what need not- be part of the web.xml file is the Servlet specification. If you search it for " name="realm-name " you will find that its schema entry specifies " minOccurs="0" " - meaning it is optional.
Sorry i forgot to add <realm-name> tag.
I know <realm-name> tag is optional but i think we can not add <realm-name> tag when using FORM atuthentication.
So my question is what will be the behaviour of Container when i add <realm-name> tag for FORM authentication ?