I'm working with form-based authentication in iPlanet AS 6.0, but much of
this is the same regardless of the app server. We've been constraining
security on a directory (url-pattern is "/secured/*"). Then you place your
Login.jsp in the secured area. Make sure the login form and the login error
pages are **not** in /secured. Other security constrained content would
also be placed in the /secured directory. We've also gone to using a mapped
servlet as the coordinator (MVC/Model 2 architecture) and this has worked
well for us.
Good luck with this.
-- chris --
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Angus Mark
Sent: Thursday, February 01, 2001 4:23 AM
To: Orion-Interest
Subject: RE: Form Login bouncing me to welcome page!
So, when the user is going to http://host:port/yourapp/Login.jsp
they get redirected to LoginForm.jsp.
They then authenticate and should see the resource they requested
(ie: http://host:port/yourapp/Login.jsp) - is this what you mean by the
welcome page ??
Hope that helps
Angus
