Help! Tomcat security configured but access denied

classic Classic list List threaded Threaded
8 messages Options
Reply | Threaded
Open this post in threaded view
|

Help! Tomcat security configured but access denied

Joe Kramer
Hello,

I have out-of-the-box tomcat, installed Hudson 1.147,
then as per instructions at http://hudson.gotdns.com/wiki/display/HUDSON/Tomcat
added this to tomcat-users.xml:

<role rolename="admin"/>
<user username="hudson-admin" password="secret" roles="admin"/>

Went to Hudson Management page and checked "enable security"

After that restarted Tomcat.
Hudson now in "read-only UI mode" (show list of projects but I'm
unable to run builds) and there's "login" link at the top.
I click on login link and enter login that is added to tomcat-users.

I get this page:
HTTP Status 403 - Access to the requested resource has been denied

In browser address bar it's /hudson/loginEntry

If I enter /hudson in browser address bar, I see Hudson Ui in
"read-only mode" (list of projects, but no build buttons) and link at
top right says "logout"!

So I enabled security, added tomcat user but something is very wrong.

1.I have out-of-the-box tomcat and Hudson. Is there a way to make it
just work with simple password?

2. Now that I enabled security in Hudson config UI and have this
problem, how can I disable security so I can access Hudson without
password again?

Thanks.

---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|

RE: Help! Tomcat security configured but access denied

David Weintraub-4
Go to the HUDSON_HOME directory and look for a file named "config.xml".
You should see a line like:

<useSecurity>true</useSecurity>

Change the "true" to "false" and restart Hudson. You should now be able
to change your configuration.

I too have been attempting to setup security, but so far have not
figured it out. I've tried setting things up with the "fileRealm" and
with the "argumentRealm", but no such luck. Once security is on, it
doesn't seem to want to turn off.

-----Original Message-----
From: Joe Kramer [mailto:[hidden email]]
Sent: Wednesday, October 24, 2007 6:18 AM
To: [hidden email]
Subject: Help! Tomcat security configured but access denied

Hello,

I have out-of-the-box tomcat, installed Hudson 1.147,
then as per instructions at
http://hudson.gotdns.com/wiki/display/HUDSON/Tomcat
added this to tomcat-users.xml:

<role rolename="admin"/>
<user username="hudson-admin" password="secret" roles="admin"/>

Went to Hudson Management page and checked "enable security"

After that restarted Tomcat.
Hudson now in "read-only UI mode" (show list of projects but I'm
unable to run builds) and there's "login" link at the top.
I click on login link and enter login that is added to tomcat-users.

I get this page:
HTTP Status 403 - Access to the requested resource has been denied

In browser address bar it's /hudson/loginEntry

If I enter /hudson in browser address bar, I see Hudson Ui in
"read-only mode" (list of projects, but no build buttons) and link at
top right says "logout"!

So I enabled security, added tomcat user but something is very wrong.

1.I have out-of-the-box tomcat and Hudson. Is there a way to make it
just work with simple password?

2. Now that I enabled security in Hudson config UI and have this
problem, how can I disable security so I can access Hudson without
password again?

Thanks.

---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]

---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|

Re: Help! Tomcat security configured but access denied

Joe Kramer
Do you have same HTTP 403 error after log in?
Or your problem is about turning off the security?

On 10/25/07, David Weintraub <[hidden email]> wrote:

> Go to the HUDSON_HOME directory and look for a file named "config.xml".
> You should see a line like:
>
> <useSecurity>true</useSecurity>
>
> Change the "true" to "false" and restart Hudson. You should now be able
> to change your configuration.
>
> I too have been attempting to setup security, but so far have not
> figured it out. I've tried setting things up with the "fileRealm" and
> with the "argumentRealm", but no such luck. Once security is on, it
> doesn't seem to want to turn off.
>
>
> -----Original Message-----
> From: Joe Kramer [mailto:[hidden email]]
> Sent: Wednesday, October 24, 2007 6:18 AM
> To: [hidden email]
> Subject: Help! Tomcat security configured but access denied
>
> Hello,
>
> I have out-of-the-box tomcat, installed Hudson 1.147,
> then as per instructions at
> http://hudson.gotdns.com/wiki/display/HUDSON/Tomcat
> added this to tomcat-users.xml:
>
> <role rolename="admin"/>
> <user username="hudson-admin" password="secret" roles="admin"/>
>
> Went to Hudson Management page and checked "enable security"
>
> After that restarted Tomcat.
> Hudson now in "read-only UI mode" (show list of projects but I'm
> unable to run builds) and there's "login" link at the top.
> I click on login link and enter login that is added to tomcat-users.
>
> I get this page:
> HTTP Status 403 - Access to the requested resource has been denied
>
> In browser address bar it's /hudson/loginEntry
>
> If I enter /hudson in browser address bar, I see Hudson Ui in
> "read-only mode" (list of projects, but no build buttons) and link at
> top right says "logout"!
>
> So I enabled security, added tomcat user but something is very wrong.
>
> 1.I have out-of-the-box tomcat and Hudson. Is there a way to make it
> just work with simple password?
>
> 2. Now that I enabled security in Hudson config UI and have this
> problem, how can I disable security so I can access Hudson without
> password again?
>
> Thanks.
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [hidden email]
> For additional commands, e-mail: [hidden email]
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [hidden email]
> For additional commands, e-mail: [hidden email]
>
>

---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|

RE: Re: Help! Tomcat security configured but access denied

David Weintraub-4
I have the same 403 error. I just sent a post to the Hudson group
"Securing Hudson" with the details I got. I used the ArgumentRealm (that
is, I put the user on the command line) which looked like it allowed me
to login (I didn't get an error message of improper login, and the
"login" link changed to "logout", but the Hudson log gave me a bunch of
errors.

I too hit the "secure Hudson" checkbox which secured Hudson to the point
that I couldn't unsecure it again. I examined the *.xml files in the
HUDSON_HOME directory looking for the setting, and I found it in the
config.xml file. At least, that got me back to where I started.

-----Original Message-----
From: Joe Kramer [mailto:[hidden email]]
Sent: Wednesday, October 24, 2007 11:34 AM
To: [hidden email]
Subject: Re: Help! Tomcat security configured but access denied

Do you have same HTTP 403 error after log in?
Or your problem is about turning off the security?

On 10/25/07, David Weintraub <[hidden email]> wrote:
> Go to the HUDSON_HOME directory and look for a file named
"config.xml".
> You should see a line like:
>
> <useSecurity>true</useSecurity>
>
> Change the "true" to "false" and restart Hudson. You should now be
able

> to change your configuration.
>
> I too have been attempting to setup security, but so far have not
> figured it out. I've tried setting things up with the "fileRealm" and
> with the "argumentRealm", but no such luck. Once security is on, it
> doesn't seem to want to turn off.
>
>
> -----Original Message-----
> From: Joe Kramer [mailto:[hidden email]]
> Sent: Wednesday, October 24, 2007 6:18 AM
> To: [hidden email]
> Subject: Help! Tomcat security configured but access denied
>
> Hello,
>
> I have out-of-the-box tomcat, installed Hudson 1.147,
> then as per instructions at
> http://hudson.gotdns.com/wiki/display/HUDSON/Tomcat
> added this to tomcat-users.xml:
>
> <role rolename="admin"/>
> <user username="hudson-admin" password="secret" roles="admin"/>
>
> Went to Hudson Management page and checked "enable security"
>
> After that restarted Tomcat.
> Hudson now in "read-only UI mode" (show list of projects but I'm
> unable to run builds) and there's "login" link at the top.
> I click on login link and enter login that is added to tomcat-users.
>
> I get this page:
> HTTP Status 403 - Access to the requested resource has been denied
>
> In browser address bar it's /hudson/loginEntry
>
> If I enter /hudson in browser address bar, I see Hudson Ui in
> "read-only mode" (list of projects, but no build buttons) and link at
> top right says "logout"!
>
> So I enabled security, added tomcat user but something is very wrong.
>
> 1.I have out-of-the-box tomcat and Hudson. Is there a way to make it
> just work with simple password?
>
> 2. Now that I enabled security in Hudson config UI and have this
> problem, how can I disable security so I can access Hudson without
> password again?
>
> Thanks.
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [hidden email]
> For additional commands, e-mail: [hidden email]
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [hidden email]
> For additional commands, e-mail: [hidden email]
>
>

---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]

---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|

Re: Re: Help! Tomcat security configured but access denied

Joe Kramer
I posted a bug report about this. You're welcome to add your comments and vote:
https://hudson.dev.java.net/issues/show_bug.cgi?id=948

On 10/25/07, David Weintraub <[hidden email]> wrote:

> I have the same 403 error. I just sent a post to the Hudson group
> "Securing Hudson" with the details I got. I used the ArgumentRealm (that
> is, I put the user on the command line) which looked like it allowed me
> to login (I didn't get an error message of improper login, and the
> "login" link changed to "logout", but the Hudson log gave me a bunch of
> errors.
>
> I too hit the "secure Hudson" checkbox which secured Hudson to the point
> that I couldn't unsecure it again. I examined the *.xml files in the
> HUDSON_HOME directory looking for the setting, and I found it in the
> config.xml file. At least, that got me back to where I started.
>
> -----Original Message-----
> From: Joe Kramer [mailto:[hidden email]]
> Sent: Wednesday, October 24, 2007 11:34 AM
> To: [hidden email]
> Subject: Re: Help! Tomcat security configured but access denied
>
> Do you have same HTTP 403 error after log in?
> Or your problem is about turning off the security?
>
> On 10/25/07, David Weintraub <[hidden email]> wrote:
> > Go to the HUDSON_HOME directory and look for a file named
> "config.xml".
> > You should see a line like:
> >
> > <useSecurity>true</useSecurity>
> >
> > Change the "true" to "false" and restart Hudson. You should now be
> able
> > to change your configuration.
> >
> > I too have been attempting to setup security, but so far have not
> > figured it out. I've tried setting things up with the "fileRealm" and
> > with the "argumentRealm", but no such luck. Once security is on, it
> > doesn't seem to want to turn off.
> >
> >
> > -----Original Message-----
> > From: Joe Kramer [mailto:[hidden email]]
> > Sent: Wednesday, October 24, 2007 6:18 AM
> > To: [hidden email]
> > Subject: Help! Tomcat security configured but access denied
> >
> > Hello,
> >
> > I have out-of-the-box tomcat, installed Hudson 1.147,
> > then as per instructions at
> > http://hudson.gotdns.com/wiki/display/HUDSON/Tomcat
> > added this to tomcat-users.xml:
> >
> > <role rolename="admin"/>
> > <user username="hudson-admin" password="secret" roles="admin"/>
> >
> > Went to Hudson Management page and checked "enable security"
> >
> > After that restarted Tomcat.
> > Hudson now in "read-only UI mode" (show list of projects but I'm
> > unable to run builds) and there's "login" link at the top.
> > I click on login link and enter login that is added to tomcat-users.
> >
> > I get this page:
> > HTTP Status 403 - Access to the requested resource has been denied
> >
> > In browser address bar it's /hudson/loginEntry
> >
> > If I enter /hudson in browser address bar, I see Hudson Ui in
> > "read-only mode" (list of projects, but no build buttons) and link at
> > top right says "logout"!
> >
> > So I enabled security, added tomcat user but something is very wrong.
> >
> > 1.I have out-of-the-box tomcat and Hudson. Is there a way to make it
> > just work with simple password?
> >
> > 2. Now that I enabled security in Hudson config UI and have this
> > problem, how can I disable security so I can access Hudson without
> > password again?
> >
> > Thanks.
> >
> >
> > ---------------------------------------------------------------------
> > To unsubscribe, e-mail: [hidden email]
> > For additional commands, e-mail: [hidden email]
> >
> > ---------------------------------------------------------------------
> > To unsubscribe, e-mail: [hidden email]
> > For additional commands, e-mail: [hidden email]
> >
> >
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [hidden email]
> For additional commands, e-mail: [hidden email]
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [hidden email]
> For additional commands, e-mail: [hidden email]
>
>

---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|

RE: Re: Re: Help! Tomcat security configured but access denied

tvworks
It is working fine for me.  Try changing your user to "hudson" instead
of "hudson-admin" and see if that makes a difference.

-----Original Message-----
From: Joe Kramer [mailto:[hidden email]]
Sent: Wednesday, October 24, 2007 10:54 AM
To: [hidden email]
Subject: Re: Re: Help! Tomcat security configured but access denied

I posted a bug report about this. You're welcome to add your comments
and vote:
https://hudson.dev.java.net/issues/show_bug.cgi?id=948

On 10/25/07, David Weintraub <[hidden email]> wrote:
> I have the same 403 error. I just sent a post to the Hudson group
> "Securing Hudson" with the details I got. I used the ArgumentRealm
(that
> is, I put the user on the command line) which looked like it allowed
me
> to login (I didn't get an error message of improper login, and the
> "login" link changed to "logout", but the Hudson log gave me a bunch
of
> errors.
>
> I too hit the "secure Hudson" checkbox which secured Hudson to the
point

> that I couldn't unsecure it again. I examined the *.xml files in the
> HUDSON_HOME directory looking for the setting, and I found it in the
> config.xml file. At least, that got me back to where I started.
>
> -----Original Message-----
> From: Joe Kramer [mailto:[hidden email]]
> Sent: Wednesday, October 24, 2007 11:34 AM
> To: [hidden email]
> Subject: Re: Help! Tomcat security configured but access denied
>
> Do you have same HTTP 403 error after log in?
> Or your problem is about turning off the security?
>
> On 10/25/07, David Weintraub <[hidden email]> wrote:
> > Go to the HUDSON_HOME directory and look for a file named
> "config.xml".
> > You should see a line like:
> >
> > <useSecurity>true</useSecurity>
> >
> > Change the "true" to "false" and restart Hudson. You should now be
> able
> > to change your configuration.
> >
> > I too have been attempting to setup security, but so far have not
> > figured it out. I've tried setting things up with the "fileRealm"
and

> > with the "argumentRealm", but no such luck. Once security is on, it
> > doesn't seem to want to turn off.
> >
> >
> > -----Original Message-----
> > From: Joe Kramer [mailto:[hidden email]]
> > Sent: Wednesday, October 24, 2007 6:18 AM
> > To: [hidden email]
> > Subject: Help! Tomcat security configured but access denied
> >
> > Hello,
> >
> > I have out-of-the-box tomcat, installed Hudson 1.147,
> > then as per instructions at
> > http://hudson.gotdns.com/wiki/display/HUDSON/Tomcat
> > added this to tomcat-users.xml:
> >
> > <role rolename="admin"/>
> > <user username="hudson-admin" password="secret" roles="admin"/>
> >
> > Went to Hudson Management page and checked "enable security"
> >
> > After that restarted Tomcat.
> > Hudson now in "read-only UI mode" (show list of projects but I'm
> > unable to run builds) and there's "login" link at the top.
> > I click on login link and enter login that is added to tomcat-users.
> >
> > I get this page:
> > HTTP Status 403 - Access to the requested resource has been denied
> >
> > In browser address bar it's /hudson/loginEntry
> >
> > If I enter /hudson in browser address bar, I see Hudson Ui in
> > "read-only mode" (list of projects, but no build buttons) and link
at
> > top right says "logout"!
> >
> > So I enabled security, added tomcat user but something is very
wrong.

> >
> > 1.I have out-of-the-box tomcat and Hudson. Is there a way to make it
> > just work with simple password?
> >
> > 2. Now that I enabled security in Hudson config UI and have this
> > problem, how can I disable security so I can access Hudson without
> > password again?
> >
> > Thanks.
> >
> >
> >
---------------------------------------------------------------------
> > To unsubscribe, e-mail: [hidden email]
> > For additional commands, e-mail: [hidden email]
> >
> >
---------------------------------------------------------------------

> > To unsubscribe, e-mail: [hidden email]
> > For additional commands, e-mail: [hidden email]
> >
> >
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [hidden email]
> For additional commands, e-mail: [hidden email]
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [hidden email]
> For additional commands, e-mail: [hidden email]
>
>

---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]

---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|

Re: Help! Tomcat security configured but access denied

David Weintraub-4
I found my mistake. I had --argumentRealm.roles.admin=admin instead of
-argumentsRealms.roles.admin=admin. The missing "s" was the problem.
However, I changed my user ID to "hudson" anyway to stop the confusing
"admin" user "admin roles issues.

$ nohup $JAVA -jar hudson.jar --httpPort=$HTTP_PORT
--javaHome=$JAVA_HOME --argumentsRealm.passwd.hudson=build
--argumentsRealm.roles.hudson=admin &

-----Original Message-----
From: Jason Chaffee [mailto:[hidden email]]
Sent: Wednesday, October 24, 2007 3:07 PM
To: [hidden email]
Subject: RE: Re: Re: Help! Tomcat security configured but access denied

It is working fine for me.  Try changing your user to "hudson" instead
of "hudson-admin" and see if that makes a difference.

-----Original Message-----
From: Joe Kramer [mailto:[hidden email]]
Sent: Wednesday, October 24, 2007 10:54 AM
To: [hidden email]
Subject: Re: Re: Help! Tomcat security configured but access denied

I posted a bug report about this. You're welcome to add your comments
and vote:
https://hudson.dev.java.net/issues/show_bug.cgi?id=948

On 10/25/07, David Weintraub <[hidden email]> wrote:
> I have the same 403 error. I just sent a post to the Hudson group
> "Securing Hudson" with the details I got. I used the ArgumentRealm
(that
> is, I put the user on the command line) which looked like it allowed
me
> to login (I didn't get an error message of improper login, and the
> "login" link changed to "logout", but the Hudson log gave me a bunch
of
> errors.
>
> I too hit the "secure Hudson" checkbox which secured Hudson to the
point

> that I couldn't unsecure it again. I examined the *.xml files in the
> HUDSON_HOME directory looking for the setting, and I found it in the
> config.xml file. At least, that got me back to where I started.
>
> -----Original Message-----
> From: Joe Kramer [mailto:[hidden email]]
> Sent: Wednesday, October 24, 2007 11:34 AM
> To: [hidden email]
> Subject: Re: Help! Tomcat security configured but access denied
>
> Do you have same HTTP 403 error after log in?
> Or your problem is about turning off the security?
>
> On 10/25/07, David Weintraub <[hidden email]> wrote:
> > Go to the HUDSON_HOME directory and look for a file named
> "config.xml".
> > You should see a line like:
> >
> > <useSecurity>true</useSecurity>
> >
> > Change the "true" to "false" and restart Hudson. You should now be
> able
> > to change your configuration.
> >
> > I too have been attempting to setup security, but so far have not
> > figured it out. I've tried setting things up with the "fileRealm"
and

> > with the "argumentRealm", but no such luck. Once security is on, it
> > doesn't seem to want to turn off.
> >
> >
> > -----Original Message-----
> > From: Joe Kramer [mailto:[hidden email]]
> > Sent: Wednesday, October 24, 2007 6:18 AM
> > To: [hidden email]
> > Subject: Help! Tomcat security configured but access denied
> >
> > Hello,
> >
> > I have out-of-the-box tomcat, installed Hudson 1.147,
> > then as per instructions at
> > http://hudson.gotdns.com/wiki/display/HUDSON/Tomcat
> > added this to tomcat-users.xml:
> >
> > <role rolename="admin"/>
> > <user username="hudson-admin" password="secret" roles="admin"/>
> >
> > Went to Hudson Management page and checked "enable security"
> >
> > After that restarted Tomcat.
> > Hudson now in "read-only UI mode" (show list of projects but I'm
> > unable to run builds) and there's "login" link at the top.
> > I click on login link and enter login that is added to tomcat-users.
> >
> > I get this page:
> > HTTP Status 403 - Access to the requested resource has been denied
> >
> > In browser address bar it's /hudson/loginEntry
> >
> > If I enter /hudson in browser address bar, I see Hudson Ui in
> > "read-only mode" (list of projects, but no build buttons) and link
at
> > top right says "logout"!
> >
> > So I enabled security, added tomcat user but something is very
wrong.

> >
> > 1.I have out-of-the-box tomcat and Hudson. Is there a way to make it
> > just work with simple password?
> >
> > 2. Now that I enabled security in Hudson config UI and have this
> > problem, how can I disable security so I can access Hudson without
> > password again?
> >
> > Thanks.
> >
> >
> >
---------------------------------------------------------------------
> > To unsubscribe, e-mail: [hidden email]
> > For additional commands, e-mail: [hidden email]
> >
> >
---------------------------------------------------------------------

> > To unsubscribe, e-mail: [hidden email]
> > For additional commands, e-mail: [hidden email]
> >
> >
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [hidden email]
> For additional commands, e-mail: [hidden email]
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [hidden email]
> For additional commands, e-mail: [hidden email]
>
>

---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]

---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]

---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|

Re: Help! Tomcat security configured but access denied

Joe Kramer
Yes it works when you use user name "hudson" instead of "hudson-admin".
Please update the wiki page!

On 10/25/07, David Weintraub <[hidden email]> wrote:

> I found my mistake. I had --argumentRealm.roles.admin=admin instead of
> -argumentsRealms.roles.admin=admin. The missing "s" was the problem.
> However, I changed my user ID to "hudson" anyway to stop the confusing
> "admin" user "admin roles issues.
>
> $ nohup $JAVA -jar hudson.jar --httpPort=$HTTP_PORT
> --javaHome=$JAVA_HOME --argumentsRealm.passwd.hudson=build
> --argumentsRealm.roles.hudson=admin &
>
> -----Original Message-----
> From: Jason Chaffee [mailto:[hidden email]]
> Sent: Wednesday, October 24, 2007 3:07 PM
> To: [hidden email]
> Subject: RE: Re: Re: Help! Tomcat security configured but access denied
>
> It is working fine for me.  Try changing your user to "hudson" instead
> of "hudson-admin" and see if that makes a difference.
>
> -----Original Message-----
> From: Joe Kramer [mailto:[hidden email]]
> Sent: Wednesday, October 24, 2007 10:54 AM
> To: [hidden email]
> Subject: Re: Re: Help! Tomcat security configured but access denied
>
> I posted a bug report about this. You're welcome to add your comments
> and vote:
> https://hudson.dev.java.net/issues/show_bug.cgi?id=948
>
> On 10/25/07, David Weintraub <[hidden email]> wrote:
> > I have the same 403 error. I just sent a post to the Hudson group
> > "Securing Hudson" with the details I got. I used the ArgumentRealm
> (that
> > is, I put the user on the command line) which looked like it allowed
> me
> > to login (I didn't get an error message of improper login, and the
> > "login" link changed to "logout", but the Hudson log gave me a bunch
> of
> > errors.
> >
> > I too hit the "secure Hudson" checkbox which secured Hudson to the
> point
> > that I couldn't unsecure it again. I examined the *.xml files in the
> > HUDSON_HOME directory looking for the setting, and I found it in the
> > config.xml file. At least, that got me back to where I started.
> >
> > -----Original Message-----
> > From: Joe Kramer [mailto:[hidden email]]
> > Sent: Wednesday, October 24, 2007 11:34 AM
> > To: [hidden email]
> > Subject: Re: Help! Tomcat security configured but access denied
> >
> > Do you have same HTTP 403 error after log in?
> > Or your problem is about turning off the security?
> >
> > On 10/25/07, David Weintraub <[hidden email]> wrote:
> > > Go to the HUDSON_HOME directory and look for a file named
> > "config.xml".
> > > You should see a line like:
> > >
> > > <useSecurity>true</useSecurity>
> > >
> > > Change the "true" to "false" and restart Hudson. You should now be
> > able
> > > to change your configuration.
> > >
> > > I too have been attempting to setup security, but so far have not
> > > figured it out. I've tried setting things up with the "fileRealm"
> and
> > > with the "argumentRealm", but no such luck. Once security is on, it
> > > doesn't seem to want to turn off.
> > >
> > >
> > > -----Original Message-----
> > > From: Joe Kramer [mailto:[hidden email]]
> > > Sent: Wednesday, October 24, 2007 6:18 AM
> > > To: [hidden email]
> > > Subject: Help! Tomcat security configured but access denied
> > >
> > > Hello,
> > >
> > > I have out-of-the-box tomcat, installed Hudson 1.147,
> > > then as per instructions at
> > > http://hudson.gotdns.com/wiki/display/HUDSON/Tomcat
> > > added this to tomcat-users.xml:
> > >
> > > <role rolename="admin"/>
> > > <user username="hudson-admin" password="secret" roles="admin"/>
> > >
> > > Went to Hudson Management page and checked "enable security"
> > >
> > > After that restarted Tomcat.
> > > Hudson now in "read-only UI mode" (show list of projects but I'm
> > > unable to run builds) and there's "login" link at the top.
> > > I click on login link and enter login that is added to tomcat-users.
> > >
> > > I get this page:
> > > HTTP Status 403 - Access to the requested resource has been denied
> > >
> > > In browser address bar it's /hudson/loginEntry
> > >
> > > If I enter /hudson in browser address bar, I see Hudson Ui in
> > > "read-only mode" (list of projects, but no build buttons) and link
> at
> > > top right says "logout"!
> > >
> > > So I enabled security, added tomcat user but something is very
> wrong.
> > >
> > > 1.I have out-of-the-box tomcat and Hudson. Is there a way to make it
> > > just work with simple password?
> > >
> > > 2. Now that I enabled security in Hudson config UI and have this
> > > problem, how can I disable security so I can access Hudson without
> > > password again?
> > >
> > > Thanks.
> > >
> > >
> > >
> ---------------------------------------------------------------------
> > > To unsubscribe, e-mail: [hidden email]
> > > For additional commands, e-mail: [hidden email]
> > >
> > >
> ---------------------------------------------------------------------
> > > To unsubscribe, e-mail: [hidden email]
> > > For additional commands, e-mail: [hidden email]
> > >
> > >
> >
> > ---------------------------------------------------------------------
> > To unsubscribe, e-mail: [hidden email]
> > For additional commands, e-mail: [hidden email]
> >
> > ---------------------------------------------------------------------
> > To unsubscribe, e-mail: [hidden email]
> > For additional commands, e-mail: [hidden email]
> >
> >
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [hidden email]
> For additional commands, e-mail: [hidden email]
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [hidden email]
> For additional commands, e-mail: [hidden email]
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [hidden email]
> For additional commands, e-mail: [hidden email]
>
>

---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]