War file and new Trusted attributes since SE 6 update 19
We deploy a war file which provides multiple applets. The new mixed code warning dialog is being displayed multiple times per user session (whenever a user selects another applet). Our war file contains multiple signed jar files, and several other components/files that are not packaged in a jar file.
Adding "deployment.security.mixcode=HIDE_RUN" to a client PC's deployment.properties file suppresses the new warning dialog, but is not a practical solution for our web customers.
#1) Is there any logging facility available in a develop/test environment that identifies the offending unsigned item(s) ?
#2) To use the Trusted-Only attribute, must every component/file in our war file be packaged in a signed jar file, or is there another alternative ?
#3) For this issue and for similar deployment issues, how likely is the hope that the Oracle Java team will improve upon these Update 19 mixed code enhancements in a near-future Update ?
What are you missing?
I inherited this app and signing the third party jars is how it was setup, I was wondering the same thing too, why was it necessary to sign the third party jars?
The applet runs in either JRE 1.6.0_13 or JRE 1.6.0_27 depending on the other Java apps the user uses. JRE 1.6.0_13 does not have the mixed code security (so it is like is disable), but JRE 1.6.0_27 does have the mixed code security and the applet will not launch with mixed code security enable, so we have to disable it. With all the hacking going on in the last two years, is important to improve security; so this is a must.
Yes, I always clear up the cache.
Any idea on how to resolve this problem?
Similar Messages
-
Porting *.war files and *.ear files to Weblogic 10.3
If we can figure this issue out, I'll see if I can't publish/post a
maven-based solution in the Maven and Oracle forums so that others
will not have to go through our pain.
We are having all the usual problems regarding where Weblogic expects
to find things and what exclusions need to be made in weblogic.xml for
war files and weblogic-application.xml for ear files. Any insights
would be deeply appreciated.
Here is what our exploded war structure currently looks like.
|____index.jsp
|____WEB-INF
| |____lib
| | |____...a long list of jar files
| |____tags
| | |____...a short list of tag files
| |____applicationContext.xml
| |____web.xml
| |____content
| | |____...a bunch of jsps
| |____tlds
| | |____...some tlds
| |____classes
| | |____mailProperties.properties
| | |____struts.xml
| | |____logback.xml
| | |____com ... the root of our class heiarchy
|____images
| |____...a list of images
|____META-INF
| |____maven
| | |____com
| | | |____project-name
| | | | |____pom.xml
| | | | |____pom.properties
| |____MANIFEST.MF
|____script
| |____...some java script files
|____style
| |____...some css files
Exceptions when trying to deploy are as follows:
INFO: ... initialized Struts-Spring integration successfully
java.lang.Exception: Could not load
servers/AdminServer/tmp//appmergegen_1254502686535_OurApp/war/WEB-INF/classes/com...
at com.opensymphony.xwork2.util.finder.ClassFinder.readClassDef(ClassFinder.java:745)
at com.opensymphony.xwork2.util.finder.ClassFinder.<init>(ClassFinder.java:148)
The exception above repeats for every .class file found below
WEB-INF/classes/com, i.e. the the ones in this module rather than the
ones in included modules.
Checking the file system shows that there is no such directory as
"appmergegen_1254502686535_conap". I'm uncertain if there is actually
supposed to be anything there, but it would seem like it.
I've a theory that if we can solve the above issue, we can solve the
rest ourselves.
It would also be handy to know what packages may cause conflicts.Alright, my research points to the idea that this might have something to do with staging. Since this is a dev setup we don't have any managed servers or anything. All we have is AdminServer and that is it. We have only one domain and it is "base_domain". Does anyone know if this is wrong?
-
War Files And Their Deployment and Redeployment
Howdy
I have a WAR file that a developer gave me which I deployed on a Linux box no problem.
Now I would like to add a jsp file and custom tag to this application.
This is what I tried:
I turned the war file into a zip file extracted the contents and then added my jsp page the class file for the custom tag modified the web.xml file for the tag and added a tld file for the tag as well.
Then I rezipped the files and renamed to a .war file and deployed it on the linux box. The previous existing files work but my new jsp page comes up with a HTTP 404 Not Found error.
Now the new jsp and custom tag work on my development machine just not on the live server when reployed into the other existing app.
What am I missing? Or am I totally off with trying to redeploy the app in this way?
Any help appreciated.
AdamFor deployment you need to use ant
-
Hi,
im new to j2ee and there are some qns i hope you can help me with.
1. why is there a need to put my jsp and servlets in a .war file?
2. where do i do my placements of ejb and jsp into the respective jar and war files? in my web server?
thanks a lot!1. why is there a need to put my jsp and servlets in a .war file?Answer- As technology evolved over ther period of time, it became more and more evident that the smaller and easier the things the better it is. WAR format is a ZIP format created to deploy your web application data. Hence called WAR(Web Application Archive). It usually contains your Images, JSP pages, and servlets and other related helper files needed by your web application. Java being a cross platform technology, it becomes easy and standardized to distribute your application(web) to other vendors/teams/people if one makes use of a WAR file. Once dropped in the root directory of the App server(i mean the proper webapp directory) the application server is smart enuf to load your WAR file and create respective directory structure.
2. where do i do my placements of ejb and jsp into the respective jar and war files? in my web server?Answer:- When you add the EJB files and distribute it along with your WAR file, its called EAR(Enterprise Archive) which is WAR+ EJB jar files. As for the JSP's they form a part of the WAR and should be bundled up while creating the WAR file.
Hope this answers the question. -
Difference between .war file and .ear file
Hi,
what is the difference between .war file and .ear file ?
Please let me know with appropriate explanation.War file means web application archive. It is archived file having a collection of JSP, servlets and static pages that together costitute a web application. It contains one WEB-INF directory which will have a file named web.xml which defines the structure of the web application.
On the other side EAR file is Enterprise application archive. It is file having packaged content of one or more modules into a single archive so that the deployment of all the modules can be done simultaneously on the application server. It also contains XML files called deployment descriptors which gives the details of the deployment method. This deployment descriptor will be present in the folder META-INF folder.
So the main difference betwwen the two is that Ear file is having collection of various modules to be deployed on the application server while the WAR file is used to deploy the web applications. -
why is my powerpoint not working 10.9? i can't play my existing file and new files that i work..? how to fix that one..? pls help..!
R Cubss,
You might want to read down this thread. There are a lot of tips-n-tricks, and maybe one will be right for you.
http://www.adobeforums.com/webx/.59b6565c/43
Good luck,
Hunt -
Behaviour differences between war file and exploded directory
Hi,
I'm baffled by differences in how my web app behaves when deploy in a war file and when deployed in exploded directory.
Firstly when I deploy in exploded directory format (using wldeploy in ant) - the jsps do not precompile. However, when I deploy the war file - again using ant and wldeploy - precompile works just fine - and general performance seems better.
Secondly - the webapp has a pdf file - which is used as a template to dynamically produce a document. When deployed
in exploded format - the webapp works fine and is able to read the pdf. However, when I deploy in war file, the pdf cannot be read.
Surely the behaviour should be the same whether we deploy as a war or exploded.
Someone please help
TariqSome behaviors will be different between a WAR file deployment and an exploded WAR deployment.
With respect to JSP precompile, you just say "they do not precompile", so I can't tell anything about that.
When you read files from an exploded WAR, you can reference them in two ways: as a resource, or as an absolute file path. When you read files from a WAR file, you can only read files as a resource, and not as an absolute file path. You're not giving any information about how you're reading the file, so I can't tell about that either.
You'd have to provide more detail to get better answers. -
Drag and Drop not working since last software update
Drag and Drop not working since last software update - this is occuring on Outlook for the mac and I just tried moving an icon on the doc and the same thing occured. YOu can drag but the items will not drop.
Please read this whole message before doing anything.
This procedure is a test, not a solution. Don’t be disappointed when you find that nothing has changed after you complete it.
Step 1
The purpose of this step is to determine whether the problem is localized to your user account.
Enable guest logins and log in as Guest. For instructions, launch the System Preferences application, select Help from the menu bar, and enter “Set up a guest account” (without the quotes) in the search box.
While logged in as Guest, you won’t have access to any of your personal files or settings. Applications will behave as if you were running them for the first time. Don’t be alarmed by this; it’s normal. If you need any passwords or other personal data in order to complete the test, memorize, print, or write them down before you begin.
Test while logged in as Guest. Same problem(s)?
After testing, log out of the guest account and, in your own account, disable it if you wish. Any files you created in the guest account will be deleted automatically when you log out of it.
Note: If you’ve activated “Find My Mac” or FileVault in Mac OS X 10.7 or later, then you can’t enable the Guest account. Create a new account in which to test, and delete it, including its home folder, after testing.
Step 2
The purpose of this step is to determine whether the problem is caused by third-party system modifications that load automatically at startup or login.
Disconnect all wired peripherals except those needed for the test, and remove all aftermarket expansion cards. Boot in safe mode and log in to the account with the problem. The instructions provided by Apple are as follows:
Be sure your Mac is shut down.
Press the power button.
Immediately after you hear the startup tone, hold the Shift key. The Shift key should be held as soon as possible after the startup tone, but not before the tone.
Release the Shift key when you see the gray Apple icon and the progress indicator (looks like a spinning gear).
Safe mode is much slower to boot and run than normal, and some things won’t work at all, including wireless networking on certain Macs.
The login screen appears even if you usually log in automatically. You must know your login password in order to log in. If you’ve forgotten the password, you will need to reset it before you begin.
Test while in safe mode. Same problem(s)?
After testing, reboot as usual (i.e., not in safe mode) and verify that you still have the problem. Post the results of steps 1 and 2. -
Why won't FireFox 4 play mp3 files that have been created since the FF update? It will play mp3 files created prior to the FF update. All of the mp3 files have been created in the same manner, as bounces from Logic Pro 9. Thank you.
Hi David,
Thank you for your detailed question. It sounds like the real issue is pdf files. Are there any antivirus/firewalls that might be blocking this specific file type? or are there any preferences in your control panel that might be blocking this?
Do you have any stored preferences for PDF files in Firefox?
*[[Applications panel - Set how Firefox handles different types of files]] -
War files and server classpath on 6.1
We used to have all of the jsp's and html exploded in a WebApp and the
WebApp just used the same classes and property files the server was using,
now we put all these files in a war file.
My question is do I have to take the server classes and property files and
put them in the war file also. Or is there another way in which I can still
use the same server classes and property files. This is causing alot of
headache trying to keep theses classes and property files in sync especially
if we have to move them from one server to another, which each server having
its on property files.
Any help would be appreciated.
Thx Kye
What server classes are you using? They will still be available from any
weblogic server instance.
What property files are you using? Are these your own properties or weblogic
properties? Are you confusing these with web.xml and weblogic.xml that live
under WEB-INF? Managed servers don't need a config.xml file since they
obtain all their configuration info from the admin server at startup.
Alex
"Kye" <[email protected]> wrote in message
news:3c1048fb$[email protected]..
> We used to have all of the jsp's and html exploded in a WebApp and the
> WebApp just used the same classes and property files the server was using,
> now we put all these files in a war file.
>
> My question is do I have to take the server classes and property files
and
> put them in the war file also. Or is there another way in which I can
still
> use the same server classes and property files. This is causing alot of
> headache trying to keep theses classes and property files in sync
especially
> if we have to move them from one server to another, which each server
having
> its on property files.
>
> Any help would be appreciated.
>
> Thx Kye
>
>
-
War files and configuration files
Hi,
I'm trying to deploy servlets using a WAR file. Everything works fine except I can't read the configuration files from the servlet code.
The code reading the configuration file is as follows:
input = ClassLoader.getSystemResourceAsStream("test.properties");
properties.load(input);
Of course this code assumes that the file "test.properties" is in the class path.
Where should I put the property file in the WAR file so that it is in the class path?
If this can�t be done, how should I structure my code around this problem?
I�m using Tomcat 3.2�
Thank you very muchI haven't had any trouble accessing properties files in the WEB-INF\classes using the following...
public class MyAnchor
private static Properties properties = new Properties();
static
URL url = MyAnchor.class.getResource("mywebapp.properties");
try
properties.load(url.openStream());
catch(Exception e)
e.printStackTrace();
public static final String PROP_CONSTANT_1 = properties.getProperty("prop_constant_1");
But I have now run into problems when trying to create a WAR file with the J2EE Deploy Tool, which will only allow *.class files to sit in the WEB-INF\classes directory.
I'll be really annoyed if I have to change the properties file name to mywebapp.class just to get around this problem.
Has anyone else found this?? I know I can add the *.props manually, but again would prefer not to.
I'm hoping its only a J2EE problem and deploying to other servers will not have this requirement. -
The tabs were working fine, but now tabs will not open when I click on the 'open a new tab + ' button, or if I go to 'file, new tab'. A new tab only opens when I click a link, but I cannot open a tab at will to start a new page. I used your troubleshooting data, but it did not help. I checked tabs settings in Options and all is checked, and I even reinstalled firefox. What do I do to reset or change settings so the tabs will open?
There is a reported incompatibility between the Ask Toolbar and Firefox 3.6.13 that causes new tabs to not open. This problem needs to be fixed by Ask; they need to update their toolbar add-on for Firefox. Until the incompatibility is fixed by Ask, you can disable the Ask Toolbar or un-install it from your system.
*http://support.mozilla.com/en-US/kb/Uninstalling+add-ons
*http://support.mozilla.com/en-US/kb/Cannot%20uninstall%20an%20add-on
'''Other issues needing your attention'''
The information submitted with your question indicates that you have out of date plugins with known security and stability issues that should be updated. To see the plugins submitted with your question, click "More system details..." to the right of your original question post. You can also see your plugins from the Firefox menu, Tools > Add-ons > Plugins.<br />
<br />
*Adobe Shockwave for Director Netscape plug-in, version 11.5.9.615
**'''''Security release version 11.5.9.620 released 2011-02-08'''''
*Shockwave Flash 10.1 r85
**Several updates behins
**'''''Security release version 10.2.152.26 released 2011-02-08'''''
*Next Generation Java Plug-in 1.6.0_23 for Mozilla browsers
**'''''Security release version 1.6.0_24 released 2011-02-10'''''
#'''Check your plugin versions''': http://www.mozilla.com/en-US/plugincheck/
#*'''Note: plugin check page does not have information on all plugin versions'''
#'''Update Shockwave for Director'''
#*NOTE: this is not the same as Shockwave Flash; this installs the Shockwave Player.
#*Use Firefox to download and SAVE the installer to your hard drive from the link in the article below (Desktop is a good place so you can find it).
#*When the download is complete, exit Firefox (File > Exit)
#*locate and double-click in the installer you just downloaded, let the install complete.
#*Restart Firefox and check your plugins again.
#*'''<u>Download link and more information</u>''': http://support.mozilla.com/en-US/kb/Using+the+Shockwave+plugin+with+Firefox
#'''Update the [[Managing the Flash plugin|Flash]] plugin''' to the latest version.
#*Download and SAVE to your Desktop so you can find the installer later
#*If you do not have the current version, click on the "Player Download Center" link on the "'''Download and information'''" or "'''Download Manual installers'''" below
#*After download is complete, exit Firefox
#*Click on the installer you just downloaded and install
#**Windows 7 and Vista: may need to right-click the installer and choose "Run as Administrator"
#*Start Firefox and check your version again or test the installation by going back to the download link below
#*'''Download and information''': http://www.adobe.com/software/flash/about/
#**Use Firefox to go to the above site to update the Firefox plugin (will also install plugin for most other browsers; except IE)
#**Use IE to go to the above site to update the IE ActiveX
#*'''Download Manual installers'''.
#**http://kb2.adobe.com/cps/191/tn_19166.html#main_ManualInstaller
#**Note separate links for:
#***Plugin for Firefox and most other browsers
#***ActiveX for IE
#'''Update the [[Java]] plugin''' to the latest version.
#*Download site: http://www.oracle.com/technetwork/java/javase/downloads/index.html (Java Platform: Download JRE)
#**'''''Be sure to <u>un-check the Yahoo Toolbar</u> option during the install if you do not want it installed.
#*Also see "Manual Update" in this article to update from the Java Control Panel in Windows Control Panel: http://support.mozilla.com/en-US/kb/Using+the+Java+plugin+with+Firefox#Updates
#* Removing old versions (if needed): http://www.java.com/en/download/faq/remove_olderversions.xml
#* Remove multiple Java Console extensions (if needed): http://kb.mozillazine.org
#*Java Test: http://www.java.com/en/download/help/testvm.xml -
Jar files and Main-Class attribute
Sorry, I know there are other topics regarding this argument but none of them helped me solving my problem.
I've tried a thousand time in every possible way, but I still can't run my application from a jar file. I've got a package called client, whose main class is called Client. The package contains a sub-package called Icons. I've put everything into a jar file and added this manifest:
Manifest version: 1.0
Name: client/
Sealed: True
Main-Class: client.Client
But it won't work. I've tried to erase the Sealed part, I've tried "Main-Class: Client" and also "client/Client", I've tried putting into the jar the client directory and I've tried omitting it, but the answer is always the same:
Failed to load main-class header etc.
Can anyone help me? Please, I'm almost desperate!
ThanksHere's the verbose-mode description of what I did.
jar -cfv client.jar clientaggiunto manifesto
aggiunta in corso di: client/(in = 0) (out= 0)(archiviato 0%)
aggiunta in corso di: client/.nbattrs(in = 767) (out= 310)(compresso 59%)
aggiunta in corso di: client/Client.class(in = 533) (out= 340)(compresso 36%)
aggiunta in corso di: client/Client.java(in = 288) (out= 140)(compresso 51%)
aggiunta in corso di: client/ClientForm$1.class(in = 691) (out= 383)(compresso 44%)
aggiunta in corso di: client/ClientForm$10.class(in = 678) (out= 380)(compresso 43%)
aggiunta in corso di: client/ClientForm$11.class(in = 689) (out= 385)(compresso 44%)
aggiunta in corso di: client/ClientForm$2.class(in = 686) (out= 379)(compresso 44%)
aggiunta in corso di: client/ClientForm$3.class(in = 686) (out= 381)(compresso 44%)
aggiunta in corso di: client/ClientForm$4.class(in = 686) (out= 380)(compresso 44%)
aggiunta in corso di: client/ClientForm$5.class(in = 686) (out= 383)(compresso 44%)
aggiunta in corso di: client/ClientForm$6.class(in = 718) (out= 399)(compresso 44%)
aggiunta in corso di: client/ClientForm$7.class(in = 718) (out= 400)(compresso 44%)
aggiunta in corso di: client/ClientForm$8.class(in = 718) (out= 399)(compresso 44%)
aggiunta in corso di: client/ClientForm$9.class(in = 718) (out= 398)(compresso 44%)
aggiunta in corso di: client/ClientForm.class(in = 33070) (out= 13510)(compresso 59%)
aggiunta in corso di: client/ClientForm.form(in = 131398) (out= 4521)(compresso96%)
aggiunta in corso di: client/ClientForm.java(in = 73435) (out= 6863)(compresso 90%)
aggiunta in corso di: client/Icons/(in = 0) (out= 0)(archiviato 0%)
aggiunta in corso di: client/Icons/brick.gif(in = 1044) (out= 1049)(compresso 0%)
aggiunta in corso di: client/Icons/corpo.gif(in = 4011) (out= 3400)(compresso 15%)
aggiunta in corso di: client/Icons/door.gif(in = 1092) (out= 1097)(compresso 0%)
aggiunta in corso di: client/Icons/floor.gif(in = 1102) (out= 1107)(compresso 0%)
aggiunta in corso di: client/Icons/mappa.gif(in = 20901) (out= 20575)(compresso 1%)
aggiunta in corso di: client/Icons/paesaggio.gif(in = 18962) (out= 18603)(compresso 1%)
aggiunta in corso di: client/Icons/sole.gif(in = 7063) (out= 6546)(compresso 7%)
aggiunta in corso di: client/Icons/trap.gif(in = 1062) (out= 1067)(compresso 0%)
aggiunta in corso di: client/Icons/void.gif(in = 842) (out= 847)(compresso 0%)
aggiunta in corso di: client/Listener.class(in = 1869) (out= 1136)(compresso 39%)
aggiunta in corso di: client/Listener.java(in = 2296) (out= 708)(compresso 69%)
aggiunta in corso di: client/manifesto.txt(in = 62) (out= 58)(compresso 6%)
aggiunta in corso di: client/ScorciatoieDialog$1.class(in = 740) (out= 391)(compresso 47%)
aggiunta in corso di: client/ScorciatoieDialog$PopupListener.class(in = 1579) (out= 773)(compresso 51%)
aggiunta in corso di: client/ScorciatoieDialog.class(in = 3524) (out= 1638)(compresso 53%)
aggiunta in corso di: client/ScorciatoieDialog.form(in = 8500) (out= 910)(compresso 89%)
aggiunta in corso di: client/ScorciatoieDialog.java(in = 5676) (out= 1222)(compresso 78%)
jar umf mainclass.txt client.jar[NOTE: mainclass.txt only contains the line "Main-Class: client.Client"]
java -jar client.jarFailed to load Main-Class manifest attribute from
client.jar
I've also tried to manually create a MANIFEST.MF file that only contained the following lines:
Manifest Version: 1.0
Main-Class: client.Client
guess what was the result?
java -jar client.jarException in thread "main" java.io.IOException: invalid manifest format
at java.util.jar.Manifest.read(Manifest.java:193)
at java.util.jar.Manifest.<init>(Manifest.java:52)
at java.util.jar.JarFile.getManifest(JarFile.java:158)
>
the same procedure with the addition of "Name: client/" before the main-class attribute generated the usual "Failed to load Main-Class manifest attribute" result. So now what?!? I'm getting crazy.... -
War file and access control with WebLogic
I am trying to put some access control on different files in my war-file, but just can't get it to work... It seems like all roles defined in weblogic.properties gives the user access to all files in the war. I just don't understand the connections between the security realm, the weblogicURL.policy file and the web.xml file... If I do not specify a weblogic.security.URLAclFile, no access control is done at all.
This is how my weblogic.properties file looks like:
weblogic.security.URLAclFile=e:\\weblogic\\weblogicURL.policy
weblogic.password.koko=kokokoko
weblogic.password.arnebelinda=arne1234
weblogic.security.group.ppuseradmins=arnebelinda
and my weblogicURL.policy:
deny Principal weblogic.security.acl.GroupImpl "everyone" {
Permission weblogic.security.acl.URLAcl "weblogic.url", "/admin/-";
and finally, my web.xml-file:
<!DOCTYPE web-app PUBLIC "-//Sun Microsystems, Inc.//DTD Web Application 2.2//EN"
"http://java.sun.com/j2ee/dtds/web-app_2_2.dtd">
<web-app>
<session-config>
<session-timeout>30</session-timeout>
</session-config>
<welcome-file-list>
<welcome-file>index.jsp</welcome-file>
</welcome-file-list>
<security-constraint>
<web-resource-collection>
<web-resource-name>admin</web-resource-name>
<url-pattern>index.jsp</url-pattern> </web-resource-collection>
<auth-constraint>
<role-name>ppuseradmins</role-name>
</auth-constraint>
</security-constraint>
<login-config>
<auth-method>BASIC</auth-method>
<realm-name>WebLogic Server</realm-name>
</login-config>
<security-role>
<role-name>ppuseradmins</role-name>
</security-role>
</web-app>
it does not matter which user is part of the ppuseradmins group. The user koko is not a member, but is given access to my whole .war anyway (after submitting correct username/password). Omitting the <realm-name> does not seem to work either; the default realm is not used, instead null is used.
Does anybody have a clue? I would really appreciate it!
I am using WebLogic 5.1 sp 9
best regards,
PJIn you pocily file entry, you have specified "/admin/-"
However, in the <security-constraint> element in web.xml, your <url-pattern> is not set to /admin
Could that be the problem ? -
I am trying to put some access control on different files in my war-file, but just
can't get it to work... It seems like all roles defined in weblogic.properties
gives the user access to all files in the war. I just don't understand the connections
between the security realm, the weblogicURL.policy file and the web.xml file...
If I do not specify a weblogic.security.URLAclFile, no access control is done
at all.
This is how my weblogic.properties file looks like:
weblogic.security.URLAclFile=e:\\weblogic\\weblogicURL.policy
weblogic.password.koko=kokokoko
weblogic.password.arnebelinda=arne1234
weblogic.security.group.ppuseradmins=arnebelinda
and my weblogicURL.policy:
deny Principal weblogic.security.acl.GroupImpl "everyone" {
Permission weblogic.security.acl.URLAcl "weblogic.url", "/admin/-";
and finally, my web.xml-file:
<!DOCTYPE web-app PUBLIC "-//Sun Microsystems, Inc.//DTD Web Application 2.2//EN"
"http://java.sun.com/j2ee/dtds/web-app_2_2.dtd">
<web-app>
<session-config>
<session-timeout>30</session-timeout>
</session-config>
<welcome-file-list>
<welcome-file>index.jsp</welcome-file>
</welcome-file-list>
<security-constraint>
<web-resource-collection>
<web-resource-name>admin</web-resource-name>
<url-pattern>index.jsp</url-pattern> </web-resource-collection>
<auth-constraint>
<role-name>ppuseradmins</role-name>
</auth-constraint>
</security-constraint>
<login-config>
<auth-method>BASIC</auth-method>
<realm-name>WebLogic Server</realm-name>
</login-config>
<security-role>
<role-name>ppuseradmins</role-name>
</security-role>
</web-app>
it does not matter which user is part of the ppuseradmins group. The user koko
is not a member, but is given access to my whole .war anyway (after submitting
correct username/password). Omitting the <realm-name> does not seem to work either;
the default realm is not used, instead null is used.
Does anybody have a clue? I would really appreciate it!
I am using WebLogic 5.1 sp 9
best regards,
PJ
In you pocily file entry, you have specified "/admin/-"
However, in the <security-constraint> element in web.xml, your <url-pattern> is not set to /admin
Could that be the problem ?
Maybe you are looking for
-
HOW DO I GET ALL MY DRIVERS TO ACTUALLY INSTALL!!!!!!!
IBM T60P-2623DDU Upgraded Ram to 4GB Now have New HD--Previous failed completely. My system had a bad HD, it went, I lost the boot partition completely, but my important data was saved. I've installed XP SP1, updated to SP2. I am having the hardest t
-
How to get Lion off my computer and go back to Snow Leopard???
How do I get rid of Lion and go back to Snow Leopard PERMANENTLY? I am not techno. I need simple instructions with plain descriptions. I do not have any discs. The iMac came with Snow Leopard and I loaded NOTHING. I should never have bought Lion. It
-
Can't open youtube on my i pod 5. what's going on?
Why can't i open youtube on my i pod 5, can anybody help with this?
-
(Pardon the plug.) The Short cut "Scripting InDesign with JavaScript" has now been updated to CS3/4: http://oreilly.com/catalog/9780596802523/ The book is essentially the same in spirit and structure. All scripts have been changed to CS3/4, errors ha
-
IPad Photo Library crash at startup
Hey I just got my new iPad and it is doing great i only have 1 and a half problem. First problem is that after i transferred my holiday photos to my iPad, the photo app crash at startup. I had about 20 photos on it (downloaded from safari) and after