• Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

doubt upon "auth-constraint".

 
koteswararao arvapalli
Greenhorn
Posts: 13
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi,

In my web.xml, for one servelet if i add "auth-constraint" is "no body" after that for same servelet if i add "auth-constraint" is " all users".
then finally who can access that servelet "no one" or "All"?

Note: if i add "auth-constraint" is "all users" first, after that if i add "auth-constraint" is "no body" then, what would be the output?

please let me know.

Regards,
koti.
 
koteswararao arvapalli
Greenhorn
Posts: 13
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
for reference check this,

<pre>
<security-constraint>
<web-resource-collection>
<web-resource-name>Sensitive</web-resource-name>
<url-pattern>/SecuredServlet</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>manager</role-name>
</auth-constraint>
</security-constraint>
<security-constraint>
<web-resource-collection>
<web-resource-name>Sensitive</web-resource-name>
<url-pattern>/SecuredServlet</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>admin</role-name>
</auth-constraint>
</security-constraint>
<security-constraint>
<web-resource-collection>
<web-resource-name>Sensitive</web-resource-name>
<url-pattern>/SecuredServlet</url-pattern>
</web-resource-collection>
<auth-constraint/>
</security-constraint>
</pre>
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic