Can we have security contraints applied to a folder in a webapp deplyed on Weblogic app server.
My web app structure is as below
MyWebApp
|
|
| - first.jsp
| - second.jsp
| - /reports
|
| - third.jsp
| - fourth.jsp
Can I restrict reports folder to allow access only to user belonging to a particular role. Security constraint element which defines this in the web.xml is given below.
<security-constraint>
<web-resource-collection>
<web-resource-name>entireWebSite</web-resource-name>
<description>protects the entire web site.</description>
<url-pattern>/reports/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>PARS_Giro_Recon_Mngr</role-name>
</auth-constraint>
<user-data-constraint>
<transport-guarantee>NONE</transport-guarantee>
</user-data-constraint>
</security-constraint>
When I access the page it gives a page not found error.
