<ul>
<li>SecirityFilter requires a Servlet 2.3 compliant server environment. This includes Tomcat 4+, WebLogic 6.1+, and many other servers. Consult your server documentation to check for Servlet 2.3 support.<p /></li>
- <li>SecurityFilter only supports FORM
based authentication. This is the most popular type of login configuration as it supports an application-specific login form page.<p /></li>
+ <li>SecurityFilter only supports FORM
and BASIC authentication. These are the most popular type of login configurations as they support an application-specific login form page and the pop-up window for login.<p /></li>
<li><user-data-constraint> elements are allowed in the SecurityFilter configuration file, but they are not currently supported. <user-data-constraint> elements are used to indicate what web resources are to be accessed only via HTTPS. Support for these constraints is expected to be available soon.<p /></li>
<li>When SecurityFilter is used, a user's Principal will not automatically be propagated to EJB calls. Supporting EJBs with SecurityFilter is currently under investigation, but it is not a currently supported environment.<p /></li>
<li>Single Sign-On among several web application contexts is not currently supported. We are investigating possible solutions for this configuration.<p /></li>
projects / securityfilter.git / commitdiff