Hi there, thanks for trying to help me.
> before you configured the ldap realm, where you challenged for
> authentication if you deployed your app on the same server but using
> another realm (such as the file realm)?
I did not test with another realm until after I tried (unsuccessfully) to
get it working with ldap, but I have tested it now, if I change realm-name
in web.xm to "admin-realm" (already existing in glassfish) I still got the
same problem. I will today search and match the configuration difference
between the administration of glassfish (here I get a login screen, so I
think that admin-realm is working) and my webapp, to see if there is any
difference.
> if not, then do you have an unqualified grant of allPermission in any of
> the policy files used by your server?
Should not this then also affect the glassfish administration pages also?
Othervice this is a complete new instalaltion of the entire system
(mandriva/java/opends/glassfish) so unless an unqualified grant of
allPermission has been installed with it, there should not bee any.
I havealso looked but not found any..
when I look at the generated policy for my webapp I see the following..
grant{
permission javax.security.jacc.WebResourcePermission "/"
permission javax.security.jacc.WebUserDataPermission "/"
};
comparing this to the generated policy file for the adminapp which has
entries like this in it
permission javax.security.jacc.WebResourcePermission "default",
"admin-role"
hmm from the above information it almlost looks as if glassfish does not
read the stuff from the web.xml file, but I might be wrong about this,
since I don't know how glassfish works.