Tomcat authentication configured inside the war

Question

I have to deploy a war to a tomcat but I cannot modify anything outside the war itself. Now I need to add authentication and authorization to the application.

The basic authentication would be enough but I cannot edit the tomcat-user.xml file, nor I can depend on absoulute paths as suggestend here: How do I provide basic http authentication for static tomcat webapps without changing tomcat-users.xml?

I just need to use a single user/password that can be configured in a file inside the war (it's a simple application with short lifetime and really low security requirements). What is the simplest way to do this?

Thanks Andrea

score 0 · Accepted Answer · edited May 23 '17 at 12:03

0

I seems that a solution is to use spring security with basic authentication.

See: Spring Security HTTP Basic Authentication

In my original case I didn't want to include spring security but I still don't know any other way to obtain this result.

edited May 23 '17 at 12:03

Community

1
1

answered Oct 23 '12 at 13:57

Andrea Polci

1,011
13
27

Tomcat authentication configured inside the war

1 Answers1