so, if you want to get into the tomcat, manager, localhost:8080/manager/html
the user you use needs to be in the "manager" role
and to get into the /admin area the user needs to be in the "admin" role
so this example makes the tomcat user be both manager and admin roles
I'm pretty sure the roles "tomcat" and "role1" are examples and useless in practice.
hmm, though the way you had it the
test user should have been able to get into the /manager/html area. (but wouldn't have been able to get into the admin area)