How to protect a web directory with a password? if we are using\u00a0Apache, we can do it easily with .htaccess. It will prompt user for credentials while entering the\u00a0directory. But how to protect a directory with password in tomcat\u00a0web server? In this post we will discuss how to do it with tomcat Realms. This example was tested in tomcat 7 and tomcat 6.<\/p>\n
<\/p>\n
Steps :<\/strong> Step 1:<\/strong> <tomcat-users> Step 2:<\/strong><\/p>\n <security-constraint> <login-config> Step 3:<\/strong> How to protect a web directory with a password? if we are using Apache, we can do it easily with .htaccess. It will prompt user for credentials while entering the directory. But how to protect a directory with password in tomcat web server? In this post we will discuss how to do it with tomcat […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[21],"tags":[],"_links":{"self":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/1641"}],"collection":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1641"}],"version-history":[{"count":5,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/1641\/revisions"}],"predecessor-version":[{"id":1644,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/1641\/revisions\/1644"}],"wp:attachment":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1641"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1641"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1641"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
1) Add user, password and role in conf\/tomcat-users.xml
2) In the webapps\/examples\/WEB-INF\/web.xml specify role, method and urls.
3) Restart Tomcat and check.<\/p>\n
in vi conf\/tomcat-users.xml<\/p>\n\n
<role rolename=”webadmin”\/> \u00a0\/\/webadmin is the rolename of the users who can access the application
<user username=”randeep” password=”randeep” roles=”webadmin”\/>
<\/tomcat-users><\/p>\n<\/blockquote>\n\n
<display-name>Example Security Constraint<\/display-name>
<web-resource-collection>
<web-resource-name>application<\/web-resource-name>
<url-pattern>\/*<\/url-pattern> \/\/applicable toall urls in the application
<http-method>DELETE<\/http-method>
<http-method>GET<\/http-method>
<http-method>POST<\/http-method>
<http-method>PUT<\/http-method>
<\/web-resource-collection>
<auth-constraint>
<role-name>webadmin<\/role-name>
<\/auth-constraint>
<\/security-constraint><\/p>\n<\/blockquote>\n\n
<auth-method>BASIC<\/auth-method> \/\/Authentication type
<realm-name>application<\/realm-name>
<\/login-config><\/p>\n<\/blockquote>\n
Restart tomcat
\/etc\/init.d\/tomcat restart
or
bin\/shutdown.sh
bin\/startup.sh<\/p>\n","protected":false},"excerpt":{"rendered":"