Hi,
I have been using the "BASIC authentication" from the tomcat3.x onwards,
unfortunately after migrating to tomcat8.0.33 it is broken. Could you please
help on this what is going wrong?
Step1)-------Realm customization--------
The customized classes are:-
a) CustomizedPrincipal implements Principal
b) CustomizedRealmBase extends RealmBase :- this is returning
successful customizedPrincipal to base class and then it is failing with
following error.
HTTP
Status 403 - Access to the requested resource has been denied
type
Status report
message
Access to the requested resource has been denied
description Access to the specified resource has been forbidden.
Step2) I have removed the files 'tomcat-users.txt' and 'tomcat-users.xsd' from
<catalina_home>\config
Spte3)-----Web.xml basic authentication configuration--------
<security-constraint>
<display-name>Security Constraint</display-name>
<web-resource-collection>
<web-resource-name>Restricted Area</web-resource-name>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>bauth </role-name>
</auth-constraint>
</security-constraint>
<login-config>
<auth-method>BASIC</auth-method>
<realm-name>Basic authentication</realm-name>
</login-config>
Thanks in advance.
