I've implemented an AuthenticationInterceptor. If the user isn't logged then is redirected to a login page to enter credential.
The problem is that from this page user and password are sent in clear text, as a normal http post. Is this true? And if yes there is a way to use some type of encription (something similar FORM, NORMAL or DIGEST used in the standard JAAS)? Thanks Gianluca --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]