Is there a way to propagate to HttpSession a login made using a servlet and jaas?.
I see that LoginContext.login() works fine BUT it is not propagated to HttpSession (or I do not know how...). That's why Tomcat request.getUserPrincipal().getName() cannot see it. On the contrary, using login form authentication and j_security_check action, user is propagated ok and no need to use a custom login servlet. The problem arises when you have a page filled with mixed components: protected and not protected and you ared using Struts and want to validate users as soon as a protected ref is clicked: Struts tells you that cannot find j_security_check page!. There's is only one way to enter this application: protecting everything from the beginning by "/*" and using BASIC of FORM j_security_check authentication. This way everything works but there is no way to logout user and stay in the same page. You must have a previous login page to enter this site. <a href="http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3825794#3825794";>View the original post</a> <a href="http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3825794>Reply to the post</a> ------------------------------------------------------- This SF.Net email is sponsored by: IBM Linux Tutorials Free Linux tutorial presented by Daniel Robbins, President and CEO of GenToo technologies. Learn everything from fundamentals to system administration.http://ads.osdn.com/?ad_id=1470&alloc_id=3638&op=click _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
