I am implementing the form based security for an application on Tomcat 4.0.3. It mostly works fine except for the small problem on the initial log on, the browser is forwarded to /j_security_check instead of the index page with the following message:
message: Invalid direct reference to form login page Upon going back and refreshing the login page, a successful log on and redirect to the index page occurs. Any ideas on how to prevent this behavior? Pete Serafin