Hello Wise Java AppEngineers, I need your help to figure out what I'm doing wrong. I've enabled Federated Login for my Java app, but whenever I visit a security- constraint protected url-pattern, I get redirected to a default Google OpenID login screen. I want my /_ah/login_required servlet handler to be called instead. The documentation says this is default behavior, but that's not happening for me.
I'm aware of the potential infinite redirect issue (that's not what I'm facing). Here's how to reproduce the behavior I'm seeing: 1) Visit http://demo.hotels-z.appspot.com/_ah/login_required. Verify that the servlet is installed and serves a page. 2) Visit http://demo.hotels-z.appspot.com/manage. Note that I'm not redirected to my _ah/login_required handler but some default Google OpenID handler. Here are parts of my web.xml: <servlet-mapping> <servlet-name>LoginRequiredServlet</servlet-name> <url-pattern>/_ah/login_required</url-pattern> </servlet-mapping> <security-constraint> <web-resource-collection> <url-pattern>/manage/*</url-pattern> </web-resource-collection> <auth-constraint> <role-name>*</role-name> </auth-constraint> </security-constraint> I followed the instructions at http://code.google.com/appengine/articles/openid.html. What am I doing wrong? Thanks! Vishal -- You received this message because you are subscribed to the Google Groups "Google App Engine for Java" group. To post to this group, send email to google-appengine-java@googlegroups.com. To unsubscribe from this group, send email to google-appengine-java+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/google-appengine-java?hl=en.