I'm curious if it's possible to make some kind of modification to the tomcat-users.xml file that would allow me to provide a generic password for all users of a specific role. For example, instead of creating a new user record for every user with rold="client,user", i'd like to just have one user record for that role.
Essentially, i want to do something to the effect of this:
instead of creating something like this:
Any direction you can provide would be greatly appreciated.
yes, in production, we authenticate against a database (i am unfortunately not too familiar with our authentication process), but to avoid having to know the user's password to look at a user's production data, we circumvent that authentication and just supply the user's username and a dummy password in tomcat-users.xml
I was thinking of the possibility of creating a stripped down version of our production application that basically did this circumvention, but didn't require us to add a user's username everytime we wanted to see their account. That is essentially why i wanted to know if there was a way to use a wildcard in the tomcat-users file.