> From: Robin Coe [mailto:[EMAIL PROTECTED] > Subject: JAAS authenticated user fails authorization check > > However, when I declare a protected resource declaratively, > and specify that the resource is protected with "rolename", > Tomcat fails to authorize the user for that resource.
Post your web.xml for the webapp, since this works fine for everyone else and we need to see what you really have configued. Also post the relevant parts of server.xml so we can see how the realm is set up. Finally, what file does the system property java.security.auth.login.config point to and what are the contents of that file? - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]