I want to web services console could be access only after user authentication. Here is what i changed in JBoss:
1. Common/deploy/jbossws-console.war/WEB-INF/web.xml – uncommented section with "A security constraint that restricts access" decription.
2. Common/deploy/jbossws-console.war/WEB-INF/jboss-web.xml – uncommented section with "A security constraint that restricts access" decription.
3. Server/default/conf/props/jbossws-users.properties – changed user name and password.
4 Server/default/conf/props/jbossws-roles.properties – changed user name and role (role to JBossAdmin).
After those changes getting into '[server]/jbossws/' request log in, but return "HTTP Status 403 – Access to the requested resource has been denied" after login with valid user name and password and return "Authentication failed" with invalid user name and password.
Any idea what i did wrong or what i need to do to make it works?
Best Answer
It seems that you are forgetting roles which can have access to your resources. Re-examine your role part thoroughly. :)