[prev in list] [next in list] [prev in thread] [next in thread] 

List:       openejb-user
Subject:    Re: OpenEJB security in Tomcat
From:       Dain Sundstrom <dain () iq80 ! com>
Date:       2008-11-24 15:53:24
Message-ID: 9FFFBB8A-9B16-4E84-914C-03FDCBD97939 () iq80 ! com
[Download RAW message or body]

IIRC, the openejb application is only accessible from localhost.  If  
you would like to setup security, simply edit the web.xml in the  
openejb application, and add a servlet security constraint.  After  
that, follow the Tomcat security documentation on how to setup a  
authorization (username and password) source).

-dain

On Nov 19, 2008, at 5:56 AM, Sarvari, Andras wrote:

> Hi,
>
> I have a successfull installation of openejb-3.1 under Tomcat 5.5.
> I deleted the context.xml file, so I can access the
> http://servername:8080/openejb URL from a remote computer as well.
> But anybody can access to this URL now. Can I set logon ID/password
> somehow for this URL by using tomcat-users.xml file?
>
> Thanks,
>
> Andras

[prev in list] [next in list] [prev in thread] [next in thread]