Java Mailing List Archive

http://www.junlu.com/

Home » Home (12/2007) » Tomcat Users »

Re: Login page only via SSL

Duncan Smith

2003-12-29

Replies:

Adding this to your web.xml should work:

<security-constraint>
<web-resource-collection>
<web-resource-name>SSL</web-resource-name>
<url-pattern>/login.jsp</url-pattern>
</web-resource-collection>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>

</security-constraint>

<login-config>
<auth-method>BASIC</auth-method>
<realm-name>SSL</realm-name>
</login-config>

Hope this helps
-Duncan Smith
www.pennymail.com



Pranas wrote:

> Hello all gurus,
>
>
>
> Could somebody explain me how to force Tomcat 4.1 using SSL for strictly only for login page?
>
>
>
> Thanks,
>
> Pranas


---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@(protected)
For additional commands, e-mail: tomcat-user-help@(protected)



©2008 junlu.com - Jax Systems, LLC, U.S.A.