I want all the users of certain group (e.g workflowusers) will be able to access this hosted site.
What is excatly the object i need to create in Active directory and add users to it ?
I Created a workflowusers group under the main DOMAIN object that looks like this (not working..):
"SEE ATTACHED IMAGE FOR ACTIVE DIRECTORY SETTINGS"
It's not a good idea to make "/*" be a secured URL pattern. Since that pattern covers everything, you make it impossible for a non-authenticated user to even fetch the images, css and other static assets until you've signed on. That can cause problems with the login process itself. Also, I prefer that every webapp should have an insecure "welcome" page, even if that page only says: "This app is secured, if you aren't authorized, go away!"
One thing that your screenshot does not show is how users are defined as members of a group. Java's security model requires 2 pair relationships - one between userid and password and one between userid and group(s). Since AD has handled the login, the userid/password relationship isn't normally important for your system, but the userid/group relationship is essential.
When it comes to destroying a civilization, gas chambers cannot hold a candle to echo chambers.
So I left, I came home, and I ate some pie. And then I read this tiny ad:
how do I do my own kindle-like thing - without amazon