Tomcat fans,
I have a (I assume basic) question wrt servlet/tomcat
authentication/authorization
First let me indicate I would like my URL to always be something like
http://<host>/username
I have configured a security-constraint like
<security-constraint>
<web-resource-collection>
<web-resource-name>myapp</web-resource-name>
<url-pattern>/*</url-pattern>
<http-method>POST</http-method>
<http-method>GET</http-method>
</web-resource-collection>
<auth-constraint>
<role-name>user</role-name>
</auth-constraint>
</security-constraint>
I would however like to have some static resources accessible without any
authentication. Typically these would be identified with
http://<host>/resouce/appstyle.css etc.
The reason is that I would like to have the login page use an external
stylesheet and/or some images.
Is that at all possible? Any guidelines how to achieve that?
Thanks,
Peter
--
View this message in context:
http://www.nabble.com/Form-based-authentaction-but-not-for-static-resources-tf2870124.html#a8021941
Sent from the Tomcat - User mailing list archive at Nabble.com.
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
