I have a simple Java application on GAE with authentication set to federated login.
I have two JSP's home.jsp is a JSP that doesn't have security constraints mypage.jsp is a JSP that has security constraints as shown at the bottom. On home.jsp I create a login url using: userService.createLoginURL("/mypage.jsp?p1=a&p2=b&p3=c", null, "gmail.com", new HashSet<String>()); this results in creation of url that looks like this: http://www.mydomain.com/_ah/login_redir?claimid=gmail.com&continue=http://www.mydomain.com/mypage.jsp?p1=a&p2=b&p3=c Once the user clicks this url, he is directed to the google page for login. After the user logs in he is redirected to mypage.jsp, only p1 is available, p2 and p3 are lost. <security-constraint> <web-resource-collection> <web-resource-name>mypage</web-resource-name> <url-pattern>/mypage.jsp</url-pattern> </web-resource-collection> <auth-constraint> <role-name>*</role-name> </auth-constraint> </security-constraint> -- You received this message because you are subscribed to the Google Groups "Google App Engine for Java" group. To post to this group, send email to google-appengine-j...@googlegroups.com. To unsubscribe from this group, send email to google-appengine-java+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/google-appengine-java?hl=en.