HTTP Status 403 – Access to the requested resource has been

  <!-- Define a Security Constraint on this Application -->
  <!-- NOTE:  None of these roles are present in the default users file -->
  <security-constraint>
    <web-resource-collection>
      <web-resource-name>HTML Manager interface (for humans)</web-resource-name>
     <span > <url-pattern>/html/*</url-pattern> 对应:http://localhost:8080/manager/html</span>
    </web-resource-collection>
    <auth-constraint>
      <span > <role-name>manager-gui</role-name> 定义了访问这个页面的角色名：manage-gui</span>
    </auth-constraint>
  </security-constraint>
  <security-constraint>
    <web-resource-collection>
      <web-resource-name>Text Manager interface (for scripts)</web-resource-name>
      <url-pattern>/text/*</url-pattern>
    </web-resource-collection>
    <auth-constraint>
       <role-name>manager-script</role-name>
    </auth-constraint>
  </security-constraint>
  <security-constraint>
    <web-resource-collection>
      <web-resource-name>JMX Proxy interface</web-resource-name>
      <url-pattern>/jmxproxy/*</url-pattern>
    </web-resource-collection>
    <auth-constraint>
       <role-name>manager-jmx</role-name>
    </auth-constraint>
  </security-constraint>

  <security-constraint>
    <web-resource-collection>
      <web-resource-name>Status interface</web-resource-name>
    <span > <url-pattern>/status/*</url-pattern> 对应：http://localhost:8080/manager/status  </span>
    </web-resource-collection>
    <auth-constraint>
      <span > <role-name>manager-gui</role-name> </span>
       <role-name>manager-script</role-name>
       <role-name>manager-jmx</role-name>
       <role-name>manager-status</role-name>
    </auth-constraint>
  </security-constraint>

  <security-constraint>
    <web-resource-collection>
      <web-resource-name>HTMLHostManager commands</web-resource-name>
      <url-pattern><span >/html/*</span></url-pattern> <span >对应：<span >http://192.168.14.219:8080/host-manager/</span>htm</span>l
    </web-resource-collection>
    <auth-constraint>
       <!-- NOTE:  This role is not present in the default users file -->
      <span > <role-name>admin-gui</role-name> 定义了管理角色名称</span></auth-constraint>
  </security-constraint>

  <!-- Security roles referenced by this web application -->
  <security-role>
    <description>
      <span >The role that is required to log in to the Host Manager Application HTML</span>
<span > interface</span>
    </description>
    <span ><role-name>admin-gui</role-name></span>
  </security-role>
  <security-role>
    <description>
      The role that is required to log in to the Host Manager Application text
      interface
    </description>
    <role-name>admin-script</role-name>
  </security-role>

<tomcat-users>
<!--
  NOTE:  By default, no user is included in the "manager-gui" role required
  to operate the "/manager/html" web application.  If you wish to use this app,
  you must define such a user - the username and password are arbitrary.
-->
<!--
  NOTE:  The sample user and role entries below are wrapped in a comment
  and thus are ignored when reading this file. Do not forget to remove
  <!.. ..> that surrounds them.
-->
<span ><!-- 这里有个注释符号去掉，使下面的生效</span>
  <role rolename="tomcat"/>
  <role rolename="role1"/>
<!--添加管理页面访问角色-->
 <span > <role rolename="manager-gui"/> </span>
 <span > <role rolename="admin-gui"/></span>
  <span ><user username="manager" password="manager" roles="manager-gui,admin-gui"/</span>>
  <user username="tomcat" password="tomcat" roles="tomcat"/>
  <user username="both" password="tomcat" roles="tomcat,role1"/>
  <user username="role1" password="tomcat" roles="role1"/>
<span >--> 这里有个注释符号去掉，是下面的生效</span>
</tomcat-users>