The next step... A challenge with container managed authentication is that you generally can't predict what url the user originally requested and thus can not do any post-authentication processing. Let's say whenever a user successfully logs in I want to log to an audit trail. I could do this if I was manually authentication because that would be centrally controlled. With container auth. the user can specify one of any number of urls in the system and the container would automatically display the login page and after a successful authentication send them on to their original destination.
So my question is, is there anything in the J2EE spec that would allow post processing of a user that was container authenticated? Thanks, Michelle -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>