You could just have a button with a link to whatever your initial secured
resource is (it'll prompt them to log in when they follow the link), or
there might be someway to put the authorization information
(username/password) in the header by using a form on a page with the action
attribute mapped to a servlet that puts the fields in their appropriate
header place and then forwards to a secured resource. But I haven't ever
used form based authentication. Maybe check your headers when you've been
authenticated and it'll help?
Sorry, not a very 'coherent' response. I think I'd just have a button w/ a
link to a secured resource, and let the form-based authentication take place
there....
Mike
----- Original Message -----
From: "Jan Agermose" <[EMAIL PROTECTED]>
To: "'Tomcat Users tomcat" <[EMAIL PROTECTED]>
Sent: Thursday, October 31, 2002 11:15 AM
Subject: Form auth
I would like to use formbased auth for my application, but it seams, that it
is based on
1. user trying to access som resource
2. if not logged in - prompt
This is of cause good. But usualy you have a webpage that has a login-form
somewhere on the page to allow the user to log in at will. Log in -before- a
secured page is requested. How can I implement this? I find only methods to
getRemoteUser and isInRole and... no setRemoteUser or the like...
Am I making sense :-)
Jan
--
To unsubscribe, e-mail: <mailto:tomcat-user-unsubscribe@;jakarta.apache.org>
For additional commands, e-mail: <mailto:tomcat-user-help@;jakarta.apache.org>
