-----Original Message-----
From: Magnus Rydin
Sent: den 19 september 2000 15:12
To: Orion-Interest
Subject: RE: session and authenthication management (fwd)Hi Truong.
In the web.xml you specify what page to use as a login form and a aditional login error form.
Then you just make sure that you protect the rest of your pages.
As there is no action in the FORM tag on the login page, whatever URL the user tried to reach (that was protected), is the target of the form.The submit button is in the form of a IMAGE, so its there allright.
Hope this helps,
Magnus Rydin
> Hello,
> I would like to build a user login system. So I have studied the atm
> example, but anyway I didn't know how it is implemented.
> Could you give
> me any hint?
> e.g. in the form tag there is no action attribute and submit
> button. Where is the session creation and user authenthication?
> Thanks in advance,
> Ly
>
>
Title: RE: session and authenthication management (fwd)
Im
sorry, according to the specification, the posting should go to
"j_security_check".
That
it works this way is a convenient feature of Orion, but should not be used for
applications intended to run on other application servers, as the correct way of
doing it is calling the "j_security_check".
The
ATM will be updated accordingly this weekend.
*blush*
WR
- session and authenthication management (fwd) Joseph B. Ottinger
- RE: session and authenthication management (fwd) Magnus Rydin
- Magnus Rydin
