Folks, I'm attempting to add security to our application. We are using Jetty and JBoss 3.0.3 When I use BASIC authentication it works fine. DIGEST authentication doesn't work either. However, when I used FORM based authentication, after I enter the username and password, I get sent to the error page. However, when I give the correct name and password, the session contains a UserPrincipal attribute "org.mortbay.jetty.Auth" containing the name of the person who logged in.
I've set the login-config.xml in conf to use two login modules, the first is ClientLoginModule, and the next is DatabaseServerLoginModule. I've added a jboss-web.xml to my war's WEB-INF directory. The web.xml has a <security-constraint> and <login-config> etc... Is there something else I have to do over and above what I do for BASIC authentication for FORM based authentication to work? Ciao, Jonathan O'Connor Ph: +353 1 872 3305 Mob: +353 86 824 9736 Fax: +353 1 873 3612 ------------------------------------------------------- This sf.net emial is sponsored by: Influence the future of Java(TM) technology. Join the Java Community Process(SM) (JCP(SM)) program now. http://ads.sourceforge.net/cgi-bin/redirect.pl?sunm0002en _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
