I have searched the archives but not found an answer. I also posted this message a few days ago but did not get a response.
My application uses form based authentication using the Tomcat JDBC Realm by posting to j_security_check as defined in the servlet specification. Everything works fine except when I enter an invalid user id / password combination which results in a redirect to the error page but instead of a specific error (such as invalid username/password), I get a null pointer exception. I would expect the Tomcat implementation to provide specific error messages that specifies an invalid user Id and password. Is this a bug or am I doing something incorrect? Has anyone run into this before? Any help is appreciated. Thanks Jan
