> >
> > Would it be possible for you to set up a simple test case and package
> > it as a WAR? Also, write-up a set of URLs and your expectations about
> > whether they should work or not and attach all that to a Bugzilla
> > report:
> > https://issues.apache.org/bugzilla/enter_bug.cgi?product=Tomc
Dear Chris,
> -Original Message-
> From: Christopher Schultz [mailto:ch...@christopherschultz.net]
> Sent: mercredi 29 août 2012 20:06
> To: Tomcat Users List
> Subject: Re: Nondeterministic behaviour of security constraints in
> Tomcat 7
>
> Would it be poss
> -Original Message-
> From: Caldarale, Charles R [mailto:chuck.caldar...@unisys.com]
> Sent: mercredi 29 août 2012 22:34
> To: Tomcat Users List
> Subject: RE: Nondeterministic behaviour of security constraints in
> Tomcat 7
>
> > The problem occurs for HTTP re
> From: CASALINO, Matteo Maria [mailto:matteo.maria.casal...@sap.com]
> Subject: Nondeterministic behaviour of security constraints in Tomcat 7
> The problem occurs for HTTP requests matching to the most specific URL
> pattern (in the above example, /a/b, /a/b/c, etc.),
Please st
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Matteo,
On 8/29/12 11:24 AM, CASALINO, Matteo Maria wrote:
> Hello everyone,
>
> I'm experiencing a weird behaviour with certain combinations of
> security constraints having the following pattern: (i) one security
> constraint applies to (at least)
Hello everyone,
I'm experiencing a weird behaviour with certain combinations of security
constraints having the following pattern:
(i) one security constraint applies to (at least) two overlapping URL patterns
ending in /*, where one is more specific than the other (e.g., /a/* and /a/b/*)
(ii) a
