[jboss-user] [Security & JAAS/JBoss] - Re: JAAS, login configuration + Hi everybody
purbano
do-not-reply at jboss.com
Wed Jul 4 03:09:49 EDT 2007
Of course I can:
| <security-constraint>
| <display-name>My Security Constraint</display-name>
| <web-resource-collection>
| <web-resource-name>Protected Area</web-resource-name>
| <!-- Define the context-relative URL(s) to be protected -->
| <url-pattern>/view/*</url-pattern>
| <url-pattern>/documentation/*</url-pattern>
| <url-pattern>/control/*</url-pattern>
|
| <!-- If you list http methods, only those methods are protected -->
| <http-method>DELETE</http-method>
| <http-method>GET</http-method>
| <http-method>POST</http-method>
| <http-method>PUT</http-method>
| </web-resource-collection>
| <auth-constraint>
| <!-- Anyone with one of the listed roles may access this area -->
| <role-name>Administrators</role-name>
| <role-name>Route Managers</role-name>
| </auth-constraint>
|
About the second question, I know that the login module has a public Group[] getRoleSets() function, but I think it is not being called, according to the logs.
Thank you for your response,
Pablo J.
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4060253#4060253
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4060253
More information about the jboss-user
mailing list