Read the spec. Especially Ch 13. Sent from my Windows Phone ________________________________ From: Mark Thomas Sent: 05/03/2013 19:18 To: Tomcat Users List Subject: Re: Tomcat Built-in WinAuth - NEW THREAD
On 05/03/2013 16:31, Chris Fors wrote: > I wish to allow any authenticated domain user There is pure web.xml (until Tomcat 8 and Servlet 3.1) way of doing this. (Aside. Once this has been implemented, we should look at back-porting the new ** feature to earlier versions). > role-name>*</role-name> That doesn't do what you think it does. (As you would know if you had read the relevant part of the Servlet spec.) There are a couple of ways around this. I suggest you look at the allRolesMode attribute of your Realm. Mark --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
