File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
Win a copy of Clojure in Action this week in the Clojure forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Problem implementing Security-Constraint in tomcat 5.0.28

Sushma Sharma
Ranch Hand
Posts: 139
  • 0
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator

I am trying to constrain access to a file, which is a jsp and I have mapped it to in web.xml.
As per what I have read, <security-constraint> element in web.xml does this job. I did the following in my web.xml

<web-resource-name>JSTL Choose</web-resource-name>



I have added admin and manager roles in tomcat-users.xml. Now, if I understand correctly only admin and manager are allowed to call GET method on this but when I try to access this file using


instead of getting the authentication screen, I am able to see the result.
Am I doing something wrong? Do I have to set some variable to a user role first and then try accessing this file? I am really confused...
Any help is welcome,


I agree. Here's the link:
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic