I'm sorry I was not so detailed in my problem description. I've just done all that you said ! I made a link to a jsp page which was included in a security constraint in web.xml. When I click on my link before getting my page, Tomcat give me the login.jsp to authenticate. The authentication fail !!
Whats wrong ? Fabio. ----- Original Message ----- From: "Mike Curwen" <[EMAIL PROTECTED]> To: "'Tomcat Users List'" <[EMAIL PROTECTED]> Sent: Wednesday, September 03, 2003 6:54 PM Subject: RE: Tomcat 4.1.27 : error in FORM authentication > > > > -----Original Message----- > > From: Fabio Bazzani [mailto:[EMAIL PROTECTED] > > Sent: Wednesday, September 03, 2003 11:15 AM > > To: Tomcat Users List > > Subject: Tomcat 4.1.27 : error in FORM authentication > > > > > > I'm working with JDK 1.4.0 and tomcat 4.1.27. > > I configured JDBCRealm in server.xml for a FORM > > authentication. When I authenticate I get a 400 error code: > > How do you 'authenticate'? Do you browse directly to login.jsp ? This > is the problem, if you are. The usage scenario of container-managed > auth is: you browse to a protected resource, the container will take > you to login.jsp, and then after that, bring you back to the originally > requested resource. If you are browsing directly to login.jsp (the > "direct reference" part of the error message) then the container cannot > know where to send you after authentication. > > > > message : Invalid direct reference to form login page > > > > description : The request sent by the client was > > syntactically incorrect (Invalid direct reference to form login page). > > > > in my login.jsp I put "j_security_check" in ACTION attribute > > in FORM tag. > > > > What's wrong ? > > > > Thank you > > > > Fabio Bazzani > > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
