I have Tomcat 5.5.4 running on WindowsXP with BASIC authentication working via
the Memory Realm and it works fine.
I want to change to FORM-based authentication. I've 'BASIC' to 'FORM' in
web.xml and have a logon.html page with a form action=j_security_check (but
it gives a HTTP 408 timeout
Did you restart Tomcat after making the web.xml change? It's been my
experience that authentication method changes like this actually get
handled from deeper within Tomcat's internal code, not just the
application, and the only way to register the change is by a full
restart.
Brent Sims
Systems