• Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Web App Security

 
Manish Shah
Greenhorn
Posts: 20
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi,

I want to perform BASIC authentication on some particular resource.
But i am not receiving the pop-up window that asks for username and password. I directly see the resource that i wanted to constraint.
All the entries in web.xml and tomcat-users.xml looks good.

I guess i am goofing up with <realm-name>. Any idea how to configure the same.

Also i want to see https: protocol if i configure <user-data-constraint> as CONFIDENTIAL.

I have read somewhere that inorder to get HTTP over SSL we need to have certificate from Verisign.

I want to test https on my local machine. Please tell me whether it is possible or not.

Thanks
Manish
 
Ulf Dittmer
Rancher
Posts: 42969
73
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Reagrding SSL: Yes, it's possible to test that on your local machine, and, yes, you need a certificate, but it doesn't need to be from Verisign; you can create it yourself. The Tomcat documentation has all the details.

The realm name is just for display purposes, so you can't really configure it incorrectly. What changes have you made to your web.xml and server.xml files?
[ November 19, 2006: Message edited by: Ulf Dittmer ]
 
Manish Shah
Greenhorn
Posts: 20
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Thanks for you reply..

I am unable to get BASIC Authentication popup window.
 
Sreeraj G Harilal
Ranch Hand
Posts: 310
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
If you just want to see the popup window try this.

 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic