user must be mapped to role "adminPriv" to satisfy your auth-constraint
role "adminPriv" is mapped to group "secureAdmin"
thus, for a user to be maped to role "adminPriv" the used must be a member of group "secureAdmin"
assuming you are using the fileRealm, use the admin console -> config -> security -> realms -> file -> manage users
to define your username and password, and to add your user to the secureAdmin group
Ron
ps; remove all the <http-method> elements form your constraint, if you want your constraint to cover all possible methods; since the set of http-methods included the http-extension methods.
[Message sent by forum member 'monzillo' (monzillo)]
http://forums.java.net/jive/thread.jspa?messageID=280195