Bug 27711 - Shipped web.xml files need some security updates
Summary: Shipped web.xml files need some security updates
Status: RESOLVED FIXED
Alias: None
Product: Slide
Classification: Unclassified
Component: Security (show other bugs)
Version: 2.0
Hardware: Other other
: P3 normal (vote)
Target Milestone: ---
Assignee: Slide Developer List
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2004-03-16 15:59 UTC by Robert Flaherty
Modified: 2004-11-16 19:05 UTC (History)
0 users


Attachments
Altered file with additional security-role-ref and security-role entries (24.72 KB, text/plain)
2004-03-31 20:18 UTC, Robert Flaherty 		Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Robert Flaherty 2004-03-16 15:59:04 UTC 
Some app servers are picky about this.

Add to the servlet:
		<security-role-ref>
			<role-name>root</role-name>
			<role-link>root</role-link>
		</security-role-ref>
		<security-role-ref>
			<role-name>guest</role-name>
			<role-link>guest</role-link>
		</security-role-ref>
		<security-role-ref>
			<role-name>user</role-name>
			<role-link>user</role-link>
		</security-role-ref>

Add:
	<security-role>
		<role-name>root</role-name>
	</security-role>
	<security-role>
		<role-name>guest</role-name>
	</security-role>
	<security-role>
		<role-name>user</role-name>
	</security-role>
Comment 1 Oliver Zeigermann 2004-03-23 14:29:28 UTC 
Where to add this?
Comment 2 Robert Flaherty 2004-03-23 14:37:43 UTC 
Add into the web.xml in slide.war in the base slide distribution, as well as 
the web.xml in the tomcat bundles for 4.x and 5.x.
Comment 3 Oliver Zeigermann 2004-03-31 09:51:15 UTC 
Can you attach the changed web.xml, please?
Comment 4 Robert Flaherty 2004-03-31 20:18:03 UTC 
Created attachment 11079 [details]
Altered file with additional security-role-ref and security-role entries
Comment 5 Oliver Zeigermann 2004-04-01 09:18:44 UTC 
Changed...