Marco Mistroni wrote:
however, when i go thru login page and i enter blank username and
blank contact, i receive an error 'invalid username or password'.
Hi Marco
If you attempt to login with a blank username or password,
AuthenticationProcessingFilter will (quite rightly) throw an exception
as it can't find a username. If this was a problem, you could easily
override AuthenticationProcessingFilter.obtainUsername, detect a blank
String from super.obtainUsername(), and then use a default username. But
I do wonder whether it's necessary. Generally if a user is hitting the
j_acegi_security_check they wish to try to authentication - not fallback
to some default. If they abandon the authentication attempt (as they
realise they don't have a username etc), they can return to the rest of
the application and continue as an anonymous user. No special handling
should be required for this.
Best regards
Ben
-------------------------------------------------------
This SF.Net email is sponsored by:
Power Architecture Resource Center: Free content, downloads, discussions,
and more. http://solutions.newsforge.com/ibmarch.tmpl
_______________________________________________
Home: http://acegisecurity.sourceforge.net
Acegisecurity-developer mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
