For Tomcat Basic Uath System you need to do 2 steps:
Insert in the <Engine...></Engine> tag of your server configuration this tag:
<Realm className="org.apache.catalina.realm.MemoryRealm">
</Realm>
Edit (or create) the conf/tomcat-users.xml file where you will place the name of all the users you wanna give access to. A conf is like this:
<?xml version='1.0' encoding='utf-8'?>
<tomcat-users>
<role rolename="test"/>
<user username="user" password="pass" roles="test"/>
</tomcat-users>
Second simply adding to your web application descriptor (web.xml) some imformation like, for example:
<security-constraint>
<web-resource-collection>
<web-resource-name>
My Protected WebSite
</web-resource-name>
<url-pattern> /* </url-pattern>
<http-method> GET </http-method>
<http-method> POST </http-method>
</web-resource-collection>
<auth-constraint>
<!-- the same like in your tomcat-users.conf file -->
<role-name> test </role-name>
</auth-constraint>
</security-constraint>
<login-config>
<auth-method> BASIC </auth-method>
<realm-name> Basic Authentication </realm-name>
</login-config>
<security-role>
<description> Test role </description>
<role-name> test </role-name>
</security-role>
Anyway if you use proxy system you can doit from apache in this way:
<Proxy>
Options ExecCGI
AllowOverride AuthConfig
Order Allow,Deny
Allow From All
AuthName "sms-Gw Access"
AuthType Basic
AuthUserFile /var/www/etc/htpasswd
require valid-user
</Proxy>
This second method is not suitable for mod_jk2
I hope this helps !
Regards
News
