This week's book giveaway is in the Testing forum. We're giving away four copies of The Way of the Web Tester: A Beginner's Guide to Automating Tests and have Jonathan Rasmusson on-line! See this thread for details.
I have setup ACL for JSP/servlets in my database realm using weblogic.servlet.*.jsp=<role> and weblogic.servlet./<jspdir>/<jspname>.jsp=<role> It still bypasses the authentication and takes me to the screen even if I do not log in. I am using MVC and declarative security will not work for me (defining security-constraint). Any help will be useful. Thanks