Hi,
In my appfuse application, i want to be able to redirect users to a change
password page when credentials_expired. To do this i am doing the following:
1. Create a custom AuthenticationProcessingFilter
2. set auto-config = false in security.xml
3. Added bean definitions for the custom authenticationprocessingfilter and
authenticationProcessingFilterEntryPoint.
After this everything works fine and i am able to login into the application
but the problem is that when i click on the signup link on the login page,
the page just refreshes and i do not see the signup page. The same happens
for the password hint link. However, when i revert the changes in
security.xml and then try again, this time the signup page appears.
Anybody have any idea what could be wrong? My configs are below:
<beans:bean id="authenticationProcessingFilterEntryPoint"
class="org.springframework.security.ui.webapp.AuthenticationProcessingFilterEntryPoint">
<beans:property name="loginFormUrl" value="/login.jsp"/>
<beans:property name="forceHttps" value="false"/>
</beans:bean>
<beans:bean id="appAuthenticationProcessingFilter"
class="com.egsgroup.invoiceexchange.webapp.filter.AppAuthenticationProcessingFilter">
<beans:property name="defaultTargetUrl" value="/index.jsp"/>
<beans:property name="authenticationManager"
ref="authenticationManager"/>
<beans:property name="authenticationFailureUrl"
value="/login.jsp?error=true"/>
<beans:property name="filterProcessesUrl"
value="/j_security_check"/>
<beans:property name="rememberMeServices"
ref="_rememberMeServices"/>
<custom-filter position="AUTHENTICATION_PROCESSING_FILTER"/>
</beans:bean>
Thanks.
