Return-Path: 
 <dev-return-63706-apmail-tomcat-dev-archive=tomcat.apache.org@tomcat.apache.org>
Delivered-To: apmail-tomcat-dev-archive@www.apache.org
Received: (qmail 91419 invoked from network); 25 Oct 2005 12:38:11 -0000
Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199)
  by minotaur.apache.org with SMTP; 25 Oct 2005 12:38:11 -0000
Received: (qmail 50068 invoked by uid 500); 25 Oct 2005 12:38:05 -0000
Delivered-To: apmail-tomcat-dev-archive@tomcat.apache.org
Received: (qmail 49957 invoked by uid 500); 25 Oct 2005 12:38:05 -0000
Mailing-List: contact dev-help@tomcat.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:dev-help@tomcat.apache.org>
List-Unsubscribe: <mailto:dev-unsubscribe@tomcat.apache.org>
List-Post: <mailto:dev@tomcat.apache.org>
List-Id: <dev.tomcat.apache.org>
Reply-To: "Tomcat Developers List" <dev@tomcat.apache.org>
Delivered-To: mailing list dev@tomcat.apache.org
Received: (qmail 49936 invoked by uid 99); 25 Oct 2005 12:38:05 -0000
Received: from asf.osuosl.org (HELO asf.osuosl.org) (140.211.166.49)
    by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 25 Oct 2005 05:38:05 -0700
X-ASF-Spam-Status: No, hits=0.0 required=10.0
	tests=
X-Spam-Check-By: apache.org
Received-SPF: pass (asf.osuosl.org: local policy)
Received: from [200.218.145.2] (HELO atenas.fw) (200.218.145.2)
    by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 25 Oct 2005 05:38:02 -0700
Received: from [172.21.1.15] by atenas.fw; Tue, 25 Oct 2005 13:34:43 GMT
Message-ID: <435E351E.6080302@jfes.trf2.gov.br>
Date: Tue, 25 Oct 2005 10:37:34 -0300
From: Patrick Dalla Bernardina <patrick@jfes.trf2.gov.br>
Reply-To: patrick@jfes.trf2.gov.br
User-Agent: Mozilla Thunderbird 1.0.6 (Windows/20050716)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: Tomcat Developers List <dev@tomcat.apache.org>
Subject: Form Authentication
References: <43579106.7050708@apache.org> <4357E30C.30503@rowe-clan.net>
 <435CDF04.9030503@apache.org> <435D26C3.9000407@telefonica.net>
 <435D332F.2070102@rowe-clan.net>
In-Reply-To: <435D332F.2070102@rowe-clan.net>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
X-OriginalArrivalTime: 25 Oct 2005 13:37:34.0413 (UTC)
 FILETIME=[4187A7D0:01C5D969]
X-Virus-Checked: Checked by ClamAV on apache.org
X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N

Hi,

I'm using tomcat as my java web application server.

I'm having a problem with FORM login config.

As I've seen in tomcat source code, FormAuthenticator.java is  
responsible for this kind of authentication. FormAuthenticator  saves a 
request to a protected resource, redirects to form login  and, after 
login, redirects to the saved request.

My problem is when I create a portlet inside my portal that  contains 
login form which action is j_security_check. How I haven't  accessed any 
protected resource, no request is saved before login  and when 
FormAuthenticator tries to restore the saved request, the  following 
error occur:

_The request sent by the client was syntactically incorrect  (Invalid 
direct reference to form login page)._

I've changed the code that send the error to redirect to:  
request.getHeader("Referer")

It would be nice to have this functionality implemented in current 
Tomcat binaries.

Is it possible?

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org