tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Patrick Dalla Bernardina <patr...@jfes.trf2.gov.br>
Subject Form Authentication
Date Tue, 25 Oct 2005 13:37:34 GMT
Hi,

I'm using tomcat as my java web application server.

I'm having a problem with FORM login config.

As I've seen in tomcat source code, FormAuthenticator.java is  
responsible for this kind of authentication. FormAuthenticator  saves a 
request to a protected resource, redirects to form login  and, after 
login, redirects to the saved request.

My problem is when I create a portlet inside my portal that  contains 
login form which action is j_security_check. How I haven't  accessed any 
protected resource, no request is saved before login  and when 
FormAuthenticator tries to restore the saved request, the  following 
error occur:

_The request sent by the client was syntactically incorrect  (Invalid 
direct reference to form login page)._

I've changed the code that send the error to redirect to:  
request.getHeader("Referer")

It would be nice to have this functionality implemented in current 
Tomcat binaries.

Is it possible?

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org


Mime
View raw message