On all the jsp pages, check if the user is authenticated using - request.getUserPrincipal(). If the method returns null, redirect the user to the login page.
hth View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4036846#4036846 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4036846 _______________________________________________ jboss-user mailing list [EMAIL PROTECTED] https://lists.jboss.org/mailman/listinfo/jboss-user
