You're missing database driven roles based user authentication and
authorization. :)
I commend you, sir, for attempting the tomcat default user management
save button!
On 5/9/19, Alex O'Ree wrote:
> Well less than perfect. Tomcat out of the box is setup with the users xml
> file. What's exposed
Well less than perfect. Tomcat out of the box is setup with the users xml
file. What's exposed as mbeans is the
"org.apache.catalina.mbeans.MemoryUserDatabaseMBean".
I can add uses to it via mbean, however calling the "save" method does not
update the tomcat-users.xml file. Am i missing something?
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Kirill,
On 5/8/19 23:20, Kirill Ilyukhin wrote:
> This might be a bad idea, but I have exactly the same issue with
> static content (simple index.html file). Also BREACH vulnerability
> implies three conditions, a webapp developer may decide to use
Am 08.05.2019 um 10:14 schrieb Mark Thomas:
On 07/05/2019 13:37, André Warnier (tomcat) wrote:
Hi.
On 26.04.2019 18:16, Mark Thomas wrote:
On 24/04/2019 10:58, André Warnier (tomcat) wrote:
Hi.
This is somewhat of an arcane question and somewhat straddling httpd and
tomcat, so if I'm on the
