In Dev Studio, there is an interface where developer can download a log file from - System > Operations > Logs.
When text or zip link is clicked, username and password are required (below little authentication screen pops up).
Developer tried Pega credentials (ie. firstname.lastname@example.org), but it did't take it. Then I tried Tomcat credentials that are specified in "tomcat-users.xml" (In below case, "admin" / "admin"), and it worked. For experimental purposes, when I removed PegaDiagnosticUser role from below settings, it stopped working.
#1. This authentication pop up expects Tomcat credentials that has a "PegaDiagnosticUser" role, not Pega credentials. Is my assumption correct?
#2. If so, how are developers supposed to know Tomcat credentials? Isn't it that they should NOT know it, from security perspectives?
#3. Is it possible to change the settings to take Pega credentials, instead of Tomcat credentials?
Thanks for the info. These are how to enable download log files without credentials. Let me answer my own questions as following:
#1. This assumption is correct.
#2. Developers usually would or should NOT know Tomcat administrator password, but by default it takes Tomcat credentials. If you don't like it you can change the settings by editing web.xml under prweb so system won't require authentication any longer.
#3. It is not possible to change the setting to take Pega credentials.