Folks, I'm attempting to add seurity to our application. When I use BASIC authentication it works fine. However, when I used FORM based authentication, I get sent to the error page. The strange thing is that the session contains UserPrincipal attribute "org.mortbay.jetty.Auth containing the name of the person who logged in.
I've set the login-config.xml in conf to use two login modules, the first is ClientLoginModule, and the next is DatabaseServerLoginModule. I've added a jboss-web.xml to my war's WEB-INF directory. The web.xml has a <security-constraint> and <login-config> etc... Is there something else I have to do over and above what I do for BASIC authentication for FORM based authentication to work? Ciao, Jonathan O'Connor Ph: +353 1 872 3305 Mob: +353 86 824 9736 Fax: +353 1 873 3612 ------------------------------------------------------- This sf.net emial is sponsored by: Influence the future of Java(TM) technology. Join the Java Community Process(SM) (JCP(SM)) program now. http://ad.doubleclick.net/clk;4699841;7576301;v?http://www.sun.com/javavote _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user