Chapter 14: Tomcat Security The element is used to specify how users authenticate with the Web application. determines which of the authentication mechanisms described here is used. Possible values include BASIC, DIGEST, FORM, and CLIENT-CERT. Because we ve chosen FORM, the
element must be nested in the element.
identifies which page in the Web application is used to authenticate the user ( /login.jsp) and which page is displayed when authentication fails (/notAuthenticated.jsp). No page is configured to be displayed when authentication succeeds. Instead, the user is presented with the URL that triggered the authentication in the first place. Authentication Form In the preceding example, the URL /login.jspis used to specify the login form. While any valid HTML page containing an HTML form may be used, the HTML form used to send the credentials to the server must be configured in three specific ways: . The value of its
The error page, named notAuthenticated.jsp, can contain any HTML that conveys to the user the fact that the authentication attempt failed. You should also create a page named index.jspthat contains the fictitious main page of the application. This page is shown if your authentication is successful.
If you looking for unlimited one inclusive web hosting plan please check cheap web hosting website.
This entry was posted
on Saturday, August 29th, 2009 at 3:50 pm and is filed under tomcat.
You can follow any responses to this entry through the RSS 2.0 feed.
Responses are currently closed, but you can trackback from your own site.