不安全的http拦截
<web-resource-collection>
<url-pattern>/*</url-pattern>
<http-method>PUT</http-method>
<http-method>DELETE</http-method>
<http-method>HEAD</http-method>
<http-method>OPTIONS</http-method>
<http-method>TRACE</http-method>
<http-method>PATCH</http-method>
</web-resource-collection>
<auth-constraint>
</auth-constraint>
</security-constraint>
<login-config>
<auth-method>BASIC</auth-method>
</login-config>
错误友好页面
<error-code>404</error-code>
<location>/WEB-INF/views/error/404.ftl</location>
</error-page>
只要设置
<error-page>
后,上边的
<security-constraint>
就不管用了,前后顺序颠倒也不行。有没有大神知道啥原因?