In page 637 of HJSJ,
case 2 says
<security-constraint>
<auth-constraint>
<role-name>Guest</role-name>
</auth-constraint>
<security-constraint>
And then mentioned that only Guest will have access to constrained urls (Admin and member cannot access)...
but in errata its mentioned that..
------------------------------------------------------------
[637] Case 2;
The second row should not have Diane and Annie crossed out.
All of these users would have permission to use the webapp. ------------------------------------------------------------
I don't understand why.. how all three roles will get permission when only Guest was configured in DD
