> 1. login successfully using 'j_security_check'; > 2. the next request happens to be to an unsecured url (e.g. > /do/frontpage (with no restrictions in web.xml) --> > DispatchServlet --> user.frontpage (tiles)) ; > 3. the request methods 'getUserPrincipal()', 'isUserInRole()' > and 'getRemoteUser()' tell me the user is not logged in (in > DispatchServlet)! > > (I'm using jboss244+tomcat401, struts1.0, tiles)
I don't know how JBoss behaves, but this is exactly how WebSphere behaves. -TPP -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>