I've got container-managed form-based login working fine under the following scenario:
User starts on page A, which is accessible by all visitors, including unauthenticated visitors. User clicks on a link to page B, which requires a role of 'admin'. In this case, Tomcat brings up a login form and the user enters information, then is directed to page B. Here is an alternate scenario I would also like to get working: User starts on page A, which has a login box in the upper right hand corner. User enters information that maps to an 'admin' role. User is directed to page B, which is the welcome page for admin users. Does anyone know how to get the second scenario working? I have tried a form with method="POST" and action="j_security_check", but it seems you can't specify the login URL as a direct action, and anyway I'm not sure how I tell Tomcat to go to page B. Is there a way to tell Tomcat, "hey, I want you to authenticate the user with this information and then go to page X with a certain URL?" -- To unsubscribe: <mailto:[EMAIL PROTECTED]> For additional commands: <mailto:[EMAIL PROTECTED]> Troubles with the list: <mailto:[EMAIL PROTECTED]>
