To enable the authentication you will need a login-config element in your web-xml file. In your case, it will look like this
once this element is present, the user must be authenticated in order to access any resource that is constrained by a <security-constraint> defined in the Web Application. Once authenticated, the user can be authorized to access other resources with access privileges.
Your <security-constraint> will look like this
This says that for the url pattern that you specify in the <url-pattern> tag and the GET and POST methods in the resource (usually a
servlet) that matches the url pattern, authentication will have to happen. I included the
which indicates that the request should use https. If you do not want the url-pattern resources to use https then remove this tag
For a great explanation of these tags read the Head First Servlets and
JSP book
Here is a link to some documentation regarding the tags I have references in the above text
http://edocs.bea.com/wls/docs61/webapp/web_xml.html#1019996 The user ID and password that you are being asked for are used to log into the admin console. Use the username and password of the that you used when you installed WebSphere
I know this works because I use it in RAD 6.0. I am curious how you wrote the Login Module and how you configured it. Could you help me with this?
-Fixed XML
[ July 18, 2007: Message edited by: Merrill Higginson ]