Details
-
Improvement
-
Status: In Progress
-
Major
-
Resolution: Unresolved
-
1.7
-
None
-
None
Description
To allow authentification the servletredirector tag need to be add to the cactify task ie :
<cactifywar version="2.3" destfile="${cactus.war}">
...
<servletredirector name="ServletRedirectorSecure"
mapping="/ServletRedirectorSecure"
roles="RoleBase"/>
The roles can be a plugin property...
This make the howto_security sample works for me without adding anything to the web.xml except the contraint/role definition :
<security-constraint>
<web-resource-collection>
<web-resource-name>SecurityRestriction</web-resource-name>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>RoleBase</role-name>
</auth-constraint>
</security-constraint>
<login-config>
<auth-method>FORM</auth-method>
<realm-name>Zone protégée</realm-name>
<form-login-config>
<form-login-page>/logon.html</form-login-page>
<form-error-page>/logonerror.html</form-error-page>
</form-login-config>
</login-config>
<security-role>
...
</security-role>