Yeah, that's right, but I think there is something special to to be done so that you get j_security_check to be recognized by Apache as something it needs to send to Tomcat.
James Higginbotham wrote: >Charles, > >The thing to keep in mind is that you cannot call the login page >directly. Rather, you have to call a protected page, which will trigger >the login page, then will post to the j_security_check, and the >container will then forward to the protected page if the user >authenticated correctly. It seems that most containers do not register >the j_security_check directly, but rather look for it once a protected >resource has been requested. > >HTH, >James > -- Eddie Bush -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
