The main ASF Bugzilla instance will be unavailable for 4 hours starting 19.00 UTC 2016-10-29 for an upgrade to 5.0.3
Bug 15570 - incorrect role-name mapping for "*" with respect to spec
incorrect role-name mapping for "*" with respect to spec
Product: Tomcat 4
Classification: Unclassified
Component: Unknown
PC All
: P3 normal (vote)
: ---
Assigned To: Tomcat Developers Mailing List
Depends on:
  Show dependency tree
Reported: 2002-12-20 15:07 UTC by Thomas Paradies
Modified: 2006-01-02 07:50 UTC (History)
0 users


Note You need to log in before you can comment on or make changes to this bug.
Description Thomas Paradies 2002-12-20 15:07:08 UTC
According to the servlet spec 2.3 the specially reserved role-name "*" is a 
compact syntax for indicating all roles in the web application. Tomcat 
interprets "*" as meaning "any authenticated user", which is not quite the same 
thing as the spec language either.

For further reading have a look at Graig's reply to my post in tomcat user 
mailing list:
Comment 1 Mark Thomas 2006-01-02 16:50:12 UTC
Thsi has been fixed in SVN for tc4.1.x and tc5.5.x