Hello Kedar,
I've never been prompted for credentials for that realm on that instance. I'm authenticated to the admin_realm on the adminstrative port, but I wouldn't expect the creds to be passed along to an instance on different port.
I was wondering if creds were secretly being passed along, and tried logging in from another machine using a totally different browser than I normally use and didn't get an auth prompt. After enabling access logging, here is what I'm seeing:
"128.55.16.135" "NULL-AUTH-USER" "03/Dec/2007:11:43:24 -0800" "GET /hello/ HTTP/1.1" 200 327
"128.55.16.135" "NULL-AUTH-USER" "03/Dec/2007:11:43:24 -0800" "GET /hello/images/duke.waving.gif HTTP/1.1" 200 1305
"128.55.16.135" "NULL-AUTH-USER" "03/Dec/2007:11:43:30 -0800" "GET /hello/ HTTP/1.1" 200 327
"128.55.16.135" "NULL-AUTH-USER" "03/Dec/2007:11:43:30 -0800" "GET /hello/images/duke.waving.gif HTTP/1.1" 200 1305
"128.55.16.135" "NULL-AUTH-USER" "03/Dec/2007:11:43:45 -0800" "GET /hello/?username=test HTTP/1.1" 200 404
"128.55.16.135" "NULL-AUTH-USER" "03/Dec/2007:11:58:24 -0800" "GET /hello/ HTTP/1.1" 200 327
"128.55.16.135" "NULL-AUTH-USER" "03/Dec/2007:11:58:24 -0800" "GET /hello/images/duke.waving.gif HTTP/1.1" 200 1305
Given that there isn't a null-auth-user in the realm, I can only assume this is the default, unauthenticated user.
Any other ideas?
[Message sent by forum member 'sychan' (sychan)]
http://forums.java.net/jive/thread.jspa?messageID=248330