<login-config> <auth-method>BASIC</auth-method> </login-config>
<login-config> <!-- assume the application server supports it --> <auth-method>DIGEST</auth-method> </login-config>
<login-config> <auth-method>FORM</auth-method> <form-login-config> <form-login-page>/login.html</form-login-page> <form-error-page>/loginerror.html</form-error-page> </form-login-config> </login-config>
<login-config> <auth-method>CLIENT-CERT</auth-method> </login-config>
|