Hi all My container security works well and I simply can't believe that such a simple requirement (see below) exceeds the possibilities of container security.
The requirement: Beside the opportunity to log in the standard way (call a secured page, fill out form and log in) users should be automatically logged in by another system. That means that the user has successfully logged into that other system (where he has the same credentials) and now can press a link that redirects him to my webapp and automatically logs him in. The link can obviously send username and password (it's MD5-hash as hex-encoding) as request parameters, but I see some problems: 1. If I submit a POST request to j_security_check with j_username and j_password, there is no target URL the user is sent to. 2. Because I would already send the password hash, the container would hash it again (would he?) so the login would fail. Is there any other way I can log in a user automatically? Thanks and cheers Stefan View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3902270#3902270 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3902270 ------------------------------------------------------- This SF.Net email is sponsored by: Power Architecture Resource Center: Free content, downloads, discussions, and more. http://solutions.newsforge.com/ibmarch.tmpl _______________________________________________ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user
