- Set <permissions-caching> to true to enable permissions to cache in the HttpSession associated with a given user. Set it to false to require users to re-authenticate each time they make a request.
- Set <login-jsp-path> to point to the jsp file that presents the application page. Ensure that the tomcat user has at least read access to this file.
- Set <login-servlet-path> to point to the servlet that authenticates a user attempting to get the Viewpoint application. This URL must be visible to the Web browser. By default, this is set to /login
- Set <app-jsp-path> to point to the jsp file that presents the application page. Ensure that the tomcat user has at least read access to this file.
- Set <app-servlet-path> to point to the servlet that serves the Viewpoint application. This URL must be visible to any given Web browser.
- Set <logout-parameter> to the HTTP parameter used by the application and login servlets to assess whether the user is attempting to log out. This is used in the navigation configuration to create a Logout link. The URL in this case is /${login-servlet}?${logout-parameter}
- The <username-parameter> element is the HTTP request parameter used by the application to determine the user’s username.
A value of false can be useful if a single sign-on system is enabled.
The path is relative to the Web application. For example, WEB-INF/login.jsp resolves to (assuming the default location of tomcat and a web application named "sample") /var/lib/tomcat6/webapps/sample/WEB-INF/login.jsp and /WEB-INF/login.jsp resolves to /WEB-INF/login.jsp.
