Configuring Custom Servlet with the WebSphere Business Space
Hazem Saleh (IBM) 2700027XCV Visits (3556)
DescriptionYou may have seen this error before while working with the WebSphere Process Server:
"SECJ0053E: Authorization failed for /UNAUTHENTICATE while invoking ..."
You can see this exception, when you want to use the WebSphere Process Server APIs (for example the Human Task Manager APIs) from your custom Servlet. This scenario is a popular scenario if you want to develop a custom widget in the WebSphere Business Space, and you want to interact with the WebSphere Process Server APIs to display for example the user tasks.
ReasonThis error occurs because you do not configure the Servlet to use the WebSphere Application Server Security.
One of the ways to solve this error is to simply configure the form-based authentication with your custom Servlet.
To configure the Servlet with the form-based authentication, you perform only two steps:
1. Changes in the WAR file:
In the web.xml file, declare the following security constraints and the user roles:
The Login.jsp code is as follows:
<%@ page language="java" cont
<FORM METHOD="post" ACTI
<strong> Enter your login credentials: </strong></font> <BR>
<td><strong> user name </strong></td>
<td><input type="text" size="20" name
<td><strong> password </strong></td>
<td><input type="password" size="20" name
<input type="submit" name="login" valu
The loginError.html code is as follows:
<!DOCTYPE HTML PUBLIC "-//W3C/DTD HTML 4.0 Transitional//EN">
<title>A login authentication failure occurred</title>
<H1><B>A login authentication failure occurred</B></H1>
<P>Authentication may fail for one of many reasons. Possible reasons
<LI>The user name or password were not entered correctly; either
misspelled or the wrong case was used.</LI>
<LI>The user name or password does not exist, has expired, or has
2. Changes in the EAR file:
Now you need to map the JEE roles "aut
<?xml version="1.0" encoding="UTF-8"?>
<group name="Home Entertainment"/>