DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUGĀ· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://issues.apache.org/bugzilla/show_bug.cgi?id=39021>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED ANDĀ· INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=39021 Summary: Support authentication only access Product: Tomcat 5 Version: 5.5.16 Platform: Other OS/Version: other Status: NEW Severity: enhancement Priority: P2 Component: Catalina AssignedTo: tomcat-dev@jakarta.apache.org ReportedBy: [EMAIL PROTECTED] The recent changes in the handling of the <role-name>*</role-name> have broken a long standing ability to specify authentication only access. Although not explicitly supported by the servlet spec(and I think it should be), this is a useful feature that users ask for. It can be achieved in various vendor specific ways via tomcat customizations, but I would like to see inherent support for it. The simplest approach would be a Realm attribute like authenticationOnlyAllRolesMode=true allowing for an authenticated user access regardless of the role(s) they have been granted. -- Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
