Hm! Thanks Adam - I guess that makes sense! Ok, so my two requirements for my authentication are 1) that I can load custom information into the session object and 2) that I support isUserInRole(). Realm authentication should take care of #2, but what can I do about #1 since I won't have any control over what happens at login?
well you can put in a filter that checks for the user info in the session and creates it when it isn't there.
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]