Role management

Greenhorn

Posts: 10

posted 19 years ago

Number of slices to send:

Optional 'thank-you' note:

Send

Using weblogic 9.0.
For a certain web app I want to restrict access using the builtin security-constraing/login-config in web.xml.

The problem I have is how to get users to belong to a certain role.
In the Administration Console i added a Role "operator", a group "mygroup" and user "myuser". I successfully added the user "myuser" to the group "mygroup", but how do i add this group/user to the specified Role?

I always get login failed when trying to login using the form.

Here is my web.xml

<?xml version="1.0" encoding="UTF-8"?>
<web-app id="WebApp_ID" version="2.4"
xmlns="http://java.sun.com/xml/ns/j2ee"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://java.sun.com/xml/ns/j2ee <a href="http://java.sun.com/xml/ns/j2ee/web-app_2_4.xsd">" target="_blank" rel="nofollow">http://java.sun.com/xml/ns/j2ee/web-app_2_4.xsd"></a>
<display-name>operator</display-name>
<welcome-file-list>
<welcome-file>index.jsp</welcome-file>
</welcome-file-list>
 
<security-constraint>
<web-resource-collection>
<web-resource-name>Entire Application</web-resource-name>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<auth-constraint>

<role-name>operator</role-name>
</auth-constraint>
</security-constraint>
 
<login-config>
<auth-method>FORM</auth-method>
<form-login-config>
<form-login-page>/login.jsp</form-login-page>
<form-error-page>/error.jsp</form-error-page>
</form-login-config>
</login-config>
 
<security-role>
<role-name>operator</role-name>
</security-role>
</web-app>

Here is the login.jsp page

Alex Anderson

Greenhorn

Posts: 10

posted 19 years ago

Number of slices to send:

Optional 'thank-you' note:

Send

Adding some weblogic specific instructions in weblogic.xml did the trick.

ankush purwar

Ranch Hand

Posts: 46

posted 19 years ago

Number of slices to send:

Optional 'thank-you' note:

Send

You have not defined users,groups and roles and assign user to groups,
But I think you have not defined Roles for groups
see the Realms -> nameofrealm -> Global Roles.
And Check the Caller is a member of group.