@lmsurpre - still illustrated using direct update to server.xml but haven't forgot about your suggestion of using configDropins.
Also as you'll see, with change to form based authentication required for customised login/error screen, had to set SSO flag to true (so you'll see LTPA tokens now exchanged etc).
@ewill00 , @lmsurpre following on from our call last week, readme for option #1 here which you can follow at your convenience -> https://github.com/Alvearie/patient-browser/blob/authentication_option_1_takeI/security/README.md
@lmsurpre - still illustrated using direct update to server.xml but haven't forgot about your suggestion of using configDropins.
Also as you'll see, with change to form based authentication required for customised login/error screen, had to set SSO flag to true (so you'll see LTPA tokens now exchanged etc).