Hello there
Tomcat 7.0.42 Windows 7 64 bit Im searching for a solution here cause i didnt find anything on the internet about it. First i describe the current config: We use a datasource realm to authenticate users with sha encrypted passwords. Everything works well with this solution(expect we do not use a salt for sha at the moment, but i can implement by myself i guess). The problem: The user should have a password which should change after a time (eg one month). So how do i intercept a login request after j_security_check which redirects the user to a „change your password“ page before redirecting him (as it usually would be), to the url he requested initially (of course this should only happen when users password has expired)? Ist there a solution out of the box, and if not which classes should i investigate to impement a custom solution ? Best regards Stefan Frei
