Hi. I have a problem since i move from war to ear (since 4 months ago aprox.), but i didn't have any chance to report it.
I have a security constraint with a based-form login, i have defined my form-login-page to an xhtml let say a login.xhtml, but when somebody tries to access to private content without be login, the redirect of the form-login-page is wrong, i mean tomee try to redirect to http://login.xhtmlinstead of http://myexampleurl.com/login.xhtml Here is the part of my web.xml <security-constraint> <display-name>PRIVATE_CONTENT_CONSTRAINT</display-name> <web-resource-collection> <web-resource-name>PRIVATE_CONTENT_CONSTRAINT</web-resource-name> <url-pattern>/private/*</url-pattern> </web-resource-collection> <auth-constraint> <description/> <role-name>tomee-admin</role-name> <role-name>manager-gui</role-name> <role-name>manager-script</role-name> </auth-constraint> </security-constraint> <login-config> <auth-method>FORM</auth-method> <form-login-config> <form-login-page>/index.xhtml</form-login-page> <form-error-page>/index.xhtml</form-error-page> </form-login-config> </login-config> I could reproduce this behavior easily in this github project https://github.com/maxtorzito/tomee For use, clean and install from parent project pom.xml, then tomee run from ear's pom.xml then access to mymailing2.com:8080 (dont forget to add this in your /etc/hosts) then you will see 1 link and 2 buttons. First try to access to the private content using the link (a href) you will see what i report here, tomee tries to redirect the relative path like absolute path. If you login an then try to access to the "private content" everything is fine. The problem is "just" the redirect. The github project run with tomee plugin, you only have to add the host to your hosts file. After this i will report, in other thread a CODI issue using @InitView annotation.
