[jetty-users] DefaultServlet with authentication

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

[jetty-users] DefaultServlet with authentication

From: Axel Rose <axel.roeslein@xxxxxxxxxxxxxx>
Date: Wed, 23 Mar 2011 10:57:37 +0100
Delivered-to: jetty-users@xxxxxxxxxxx
Domainkey-signature: a=rsa-sha1; c=nofws; d=googlemail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type; b=oY+H2zUaijfg2/UMCRJ552EguBfkpmR2pWwEe+z03NSKmDdACTsXXcLaUVEVStYV09 DSjgISKW/Krl0/0DUhYPrgdHIF8/n0atfOuqnoBOdGPZqbcCE5yY33xhvQyu9kXAv1b2 Ezzu7EkaOIaVRFXQ/eNAmjzrQgvQO5WhZ1P5E=
List-archive: <https://dev.eclipse.org/mailman/private/jetty-users>
List-help: <mailto:jetty-users-request@eclipse.org?subject=help>
List-subscribe: <https://dev.eclipse.org/mailman/listinfo/jetty-users>, <mailto:jetty-users-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://dev.eclipse.org/mailman/options/jetty-users>, <mailto:jetty-users-request@eclipse.org?subject=unsubscribe>

Hello all,

could anybody help how to configure jetty 7.2 to use authentication when
serving some static content with the DefaultServlet?

The content is accessible but access restrictions don't seem to be used.


This is what I tried:

<Configure id="Server" class="org.eclipse.jetty.server.Server">

    <Set name="handler">
      <New id="Handlers"
class="org.eclipse.jetty.server.handler.HandlerCollection">
        <Set name="handlers">
          <Array type="org.eclipse.jetty.server.Handler">
            <Item>
              <New class="org.eclipse.jetty.servlet.ServletContextHandler">
                <Set name="contextPath">/content</Set>
                <Set name="resourceBase">/home/ar/content/</Set>
                <Call name="addServlet">
                  <Arg>org.eclipse.jetty.servlet.DefaultServlet</Arg>
                  <Arg>/</Arg>
                </Call>
              </New>
            </Item>
          </Array>
        </Set>
      </New>
  </Set>

  <Call name="addBean">
    <Arg>
      <New class="org.eclipse.jetty.security.HashLoginService">
        <Set name="name">UserDatabase</Set>
        <Set name="config"><Property name="jetty.home"
default="."/>/etc/realm.properties</Set>
        <Set name="refreshInterval">0</Set>
      </New>
    </Arg>
  </Call>

</Configure>

and within "etc/webdefault.xml" I added

<web-app>
  <servlet>
    <servlet-name>default</servlet-name>
    <servlet-class>org.eclipse.jetty.servlet.DefaultServlet</servlet-class>
  </servlet>

  <servlet-mapping>
    <servlet-name>default</servlet-name>
    <url-pattern>/</url-pattern>
  </servlet-mapping>

  <security-constraint>
    <web-resource-collection>
      <url-pattern>/</url-pattern>
    </web-resource-collection>
    <auth-constraint>
      <role-name>admin</role-name>
      <role-name>user</role-name>
      <role-name>moderator</role-name>
    </auth-constraint>
  </security-constraint>

  <login-config>
    <auth-method>BASIC</auth-method>
    <realm-name>UserDatabase</realm-name>
  </login-config>


Thanks for any hints,
Axel.

Follow-Ups:
- Re: [jetty-users] DefaultServlet with authentication
  - From: Michael Gorovoy

Prev by Date: Re: [jetty-users] Couldn't parser response content in ProxyServlet
Next by Date: Re: [jetty-users] Issue with Lodaing LdapLoginModule
Previous by thread: [jetty-users] List of Jetty's JMX MBeans and Attributes?
Next by thread: Re: [jetty-users] DefaultServlet with authentication
Index(es):
- Date
- Thread

Breadcrumbs