That's exactly what I'm trying to do. It's clearly possible, as (somehow) j_security_check processing does it; once you've authenticated once via form authentication, there is something set in your session which makes all further requests on that session also authenticate. Thus we have an existence proof that it's possible. :)
I'm a bit mystified at why it seems so hard to replicate in app code, though. I am going to try to understand the Tomcat j_security_check implementation this weekend in hopes that it will provide a useful model for how the trick is done. But a good explanation from a human would be even better. -----Original Message----- From: Ionel Gardais [mailto:[EMAIL PROTECTED] Sent: Friday, April 04, 2003 6:52 AM To: [EMAIL PROTECTED] Subject: Re: [JBoss-user] auth login config file from JSP Ok, I read it. Isn't it possible for the LoginContext to persist as long as the session ? Here it creates a new LoginContext on each call to the servlet. ionel Scott M Stark wrote: > No, that works fine as propagation from the servler > to the ejb container is supported provided you use > the right login module. See the > org.jboss.test.web.servlets.ClientLoginServlet > in the testsuite module for an example. ------------------------------------------------------- This SF.net email is sponsored by: ValueWeb: Dedicated Hosting for just $79/mo with 500 GB of bandwidth! No other company gives more support or power for your dedicated server http://click.atdmt.com/AFF/go/sdnxxaff00300020aff/direct/01/ _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user ------------------------------------------------------- This SF.net email is sponsored by: ValueWeb: Dedicated Hosting for just $79/mo with 500 GB of bandwidth! No other company gives more support or power for your dedicated server http://click.atdmt.com/AFF/go/sdnxxaff00300020aff/direct/01/ _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
