tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Adam Hardy <ahardy.str...@cyberspaceroad.com>
Subject Re: form-based login / cookies disabled / JSPs in WEB-INF
Date Sun, 28 Sep 2003 16:50:05 GMT
On 09/28/2003 06:09 PM Jose Alfonso Martinez wrote:
> Do you really need to maintain a session, even when the user is just browsing static
html files (before logging in)???  If the answer is no, then you could have an html login
form.
> 

Try it! If tomcat doesn't have a session id to store the user's request 
with when tomcat is stepping in between with the login procedure, then 
tomcat will not know where the login submission has come from once the 
user clicks the login form's submit. This leads directly to a 
j_security_check not available 404 error.

Adam

-- 
struts 1.1 + tomcat 4.1.27 + java 1.4.2
Linux 2.4.20 RH9


Mime
View raw message