<div dir="ltr">If you have a javascript applicaiton why are you not using the javascript adapter?</div><div class="gmail_extra"><br><div class="gmail_quote">On 4 December 2015 at 15:15, Christopher Wallace <span dir="ltr"><<a href="mailto:cjwallac@gmail.com" target="_blank">cjwallac@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr"><div>We are using Apache TOMCAT v. 8.0.18. We have a Javascript application that we would like to configure web.xml using KEYCLOAK to protect all root URI's '/' except '/tracking'. Is there a way to exclude '/tracking' from being protected either in the KEYCLOAK admin console or in the WEB.XML itself. Some additional information is for the tracking URL we will use both HTTP and WEBSOCKETS protocols. Our current approach was to specifically protect all URI except for '/tracking' but that doesn't seem to be working as a solution.</div><div><br></div><div>We have attached our example WEB.XML attempting to specifically protect URLs:</div><div><br></div><div><div><?xml version="1.0" encoding="UTF-8"?></div><div><web-app xmlns="<a href="http://java.sun.com/xml/ns/javaee" target="_blank">http://java.sun.com/xml/ns/javaee</a>"</div><div> xmlns:xsi="<a href="http://www.w3.org/2001/XMLSchema-instance" target="_blank">http://www.w3.org/2001/XMLSchema-instance</a>"</div><div> xsi:schemaLocation="<a href="http://java.sun.com/xml/ns/javaee" target="_blank">http://java.sun.com/xml/ns/javaee</a> <a href="http://java.sun.com/xml/ns/javaee/web-app_3_0.xsd" target="_blank">http://java.sun.com/xml/ns/javaee/web-app_3_0.xsd</a>"</div><div> version="3.0"></div><div> <module-name>ROOT</module-name></div><div> <security-constraint></div><div> <web-resource-collection></div><div> <web-resource-name>APP</web-resource-name></div><div> <url-pattern>/app/*</url-pattern></div><div> </web-resource-collection></div><div> <!--API--></div><div> <web-resource-collection></div><div> <web-resource-name>API</web-resource-name></div><div> <url-pattern>/api/*</url-pattern></div><div> </web-resource-collection></div><div> <!--HTML--></div><div> <web-resource-collection></div><div> <web-resource-name>HTML</web-resource-name></div><div> <url-pattern>*.html</url-pattern></div><div> </web-resource-collection></div><div><auth-constraint></div><div> <role-name>user</role-name></div><div> </auth-constraint></div><div> </security-constraint></div><div> <login-config></div><div> <auth-method>KEYCLOAK</auth-method></div><div> <realm-name>worktrac</realm-name></div><div> </login-config></div><div> <security-role></div><div> <role-name>user</role-name></div><div> </security-role></div><div></web-app></div></div><div><br></div><div>We appreciate your feedback and thoughts on a solution.</div><div>- Chris</div>
</div>
<br>_______________________________________________<br>
keycloak-user mailing list<br>
<a href="mailto:keycloak-user@lists.jboss.org">keycloak-user@lists.jboss.org</a><br>
<a href="https://lists.jboss.org/mailman/listinfo/keycloak-user" rel="noreferrer" target="_blank">https://lists.jboss.org/mailman/listinfo/keycloak-user</a><br></blockquote></div><br></div>