B, If you are using Container Authentication then yes, the container does that for you. Chapter 8 really does describe what you need well if you do not have any unusual circumstances. To summarize...
1.) create your web app and add security-constraints to you web.xml 2.) specify your authentication method (i.e. auth-method) in your web.xml 3.) specify what security domain your web application will use. This is the security-domain in your jboss-web.xml 4.) finally, specify what login modules your security domain will use in $JBOSS_SERVER/conf/login_config.xml You do not need your Bean in the jsp. later, cgriffith View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3944595#3944595 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3944595 ------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ JBoss-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/jboss-user
