我正在測試某些URL的安全約束。我覺得網址格式行事怪異。我想訪問限制ServletSecurityTest(webapproot)/
之後。但是,在websphere部署war文件後,即使ServletSecurityTest(webapproot)
本身也受到限制。爲什麼?安全約束<url-pattern>代理奇怪 - websphere
例如:
我想這http//ravi-pc:9080/ServletSecurityTest/testSecurity.do
受到限制。這個沒關係。但即使http//ravi-pc:9080/ServletSecurityTest
也受到限制。爲什麼?
任何想法?
的web.xml
<security-constraint>
<web-resource-collection>
<web-resource-name>Servlet Security Resources</web-resource-name>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>Administrator</role-name>
</auth-constraint>
</security-constraint>
<security-role>
<role-name>Administrator</role-name>
</security-role>
的Servlet
@WebServlet(name="SecurityTestServlet", urlPatterns={"/testSecurity.do"})
public class SecurityTestServlet extends HttpServlet {
public void doGet(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
response.getWriter().write("Only Administrators can see this...");
}
}
找到了解釋。不錯的一個>> http://stackoverflow.com/a/10667527/2093375 – 2013-04-29 12:21:45