Protecting NewsInjector Using Security Roles
For production environment you may want to download and install a version of NewsInjector with enabled security:
The only difference between newsinjector-1.4.1.zip and newsinjector-auth-1.4.1.zip packages is WEB-INF/web.xml file. The package with enabled security defines following security-role:
- news-admin
If you are using Tomcat Servlet container then define this role in conf/tomcat-users.xml file and assign users to this role in the same file.
WebSphere application server allows you to configure authentication for application security roles in the Administration Console during the installation process or afterwards.
If security-role based authentication doesn't work for you or it is not clear how to configure it, please download default installation package newsinjector-1.4.1.zip and write me at support@newsinjector.com.