Hello! I am developing a web-application that runs inside jboss+tomcat. The authentication for the web-pages are FORM-based using a JAAS LoginModule.
I am also developing a client application in java. The client access some servlets on the server. The client POSTs username&password to the server and remember the session cookie. Now I want to move client-server communication to axis. We are using RSA SecurID passwords that change every minute, so the username&password can not be sent for every request. Only in the start of a session. I have read that the following code should be used on the server to get hold of the current session from a service. MessageContext mc = MessageContext.getCurrentContext(); Session s = mc.getSession(); What about the client? How can I set the JSESSIONID cookie header on every http-request that the axis client performs? Should this be done in another way? - Tore.
