Using JBoss 4.0.4.CR2. We deploy an EAR with a contained WAR, which declares a FORM based login Security profile refering to a self-made login module derived from the JBoss DatabaseLoginModule.
All works fine at startup. Users can login, roles are checked etc, etc. However, if I deploy a new version of the EAR (code updates) and press 'Refresh' on the browser I get a '403 Forbidden' status back. If I modify the browser URL and add a '?' to it then press return, I get the login page. We are using JSF (with Facelets 1.1.4) which POSTs all requests (never does a GET). My workaround is to redirect the '403' page in Tomcat to a servlet that tests if the request is a POST, if so it redirects to the context root with a GET. Is there a better solution to this? Dave View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3937845#3937845 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3937845 ------------------------------------------------------- This SF.Net email is sponsored by xPML, a groundbreaking scripting language that extends applications into web and mobile media. Attend the live webcast and join the prime developer group breaking into this new coding territory! http://sel.as-us.falkag.net/sel?cmd=lnk&kid=110944&bid=241720&dat=121642 _______________________________________________ JBoss-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/jboss-user
