Security access

in the web.xml

 Security Constraint  Protected Area /*   admin tomcat   <login-config> <auth-method>BASIC</auth-method> <realm-name>Basic Auth</realm-name> </login-config> <security-role> admin</role-name> </security-role> <security-role> tomcat</role-name> </security-role>