For security constraints with URL pattern [/*] only the HTTP methods are covered

Solution Unverified - Updated -

Issue

  • We restrict certain HTTP methods so they are not allowed in our application WEB-INF/web.xml. Then we see an error like the following at start up:
ERROR [main]: For security constraints with URL pattern [/*] only the HTTP methods [TRACE DELETE OPTIONS PUT] are covered. All other methods are uncovered.

Environment

  • JBoss Enterprise Web Server (JWS) 5.x
  • Tomcat 9.0.x

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In