How to exclude one url from authorization

by

Omit the <auth-constraint> element in <security-constraint> for resources for which you don’t need authentication like:

<security-constraint>
    <web-resource-collection>
        <web-resource-name>app</web-resource-name>
        <url-pattern>/info</url-pattern>
    </web-resource-collection>
    <!-- OMIT auth-constraint -->
</security-constraint>

<security-constraint>
    <web-resource-collection>
        <web-resource-name>app</web-resource-name>
        <url-pattern>/*</url-pattern>
    </web-resource-collection>
    <auth-constraint>
        <role-name>Role</role-name>
    </auth-constraint>
</security-constraint>

More Related Contents:

  1. Java EE authentication: how to capture login event?
  2. Session TimeOut in web.xml
  3. Why do we use web.xml? [closed]
  4. How to implement REST token-based authentication with JAX-RS and Jersey
  5. Why JSF saves the state of UI components on server?
  6. Could not calculate build plan: Plugin org.apache.maven.plugins:maven-resources-plugin:2.5 or one of its dependencies could not be resolved
  7. What’s the difference between JPA and Hibernate? [closed]
  8. How to specify the default error page in web.xml?
  9. Servlet for serving static content
  10. How to generate JAXB classes from XSD?
  11. Configuring Spring Security 3.x to have multiple entry points
  12. cURL equivalent in JAVA
  13. Exception starting filter struts2 – tried adding JAR’s, but same result
  14. Should I use @EJB or @Inject
  15. How are Servlet url mappings in web.xml used?
  16. Access Enum value using EL with JSTL
  17. Tomcat vs Weblogic JNDI Lookup
  18. Which compression (is GZIP the most popular) servlet filter would you suggest?
  19. What is local/remote and no-interface view in EJB?
  20. Referencing Environment Variables in web.xml
  21. Batch inserts using JPA EntityManager
  22. Sharing a persistence unit across components in a .ear file
  23. how to create a remote session EJB from a client
  24. log4j: package-specific logging
  25. How to pass an Integer Array to IN clause in MyBatis
  26. Access Spring beans from a servlet in JBoss
  27. Proper usage of JDBC Connection Pool (Glassfish)
  28. LOAD and CACHE application-scoped data with @Singleton and @Stateless
  29. JAX-WS vs. JAX-RPC
  30. RestTemplate with pem certificate

Leave a Comment