tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Jurrie Overgoor <>
Subject Proxy and j_security_check
Date Thu, 27 Nov 2003 16:26:02 GMT
Hello there,

I'm currently in the process of configuring Tomcat. The network
configuration is a bit above avarage:
The http requests come in to the router. The router is running Apache
1.3.22, and uses ProxyPass and ProxyPassReverse to forward the request to
the Tomcat 5.0.14 server running on This all goes well.

But... We use form based authentication using j_security_check to
authenticate our users. This goes wrong. The moment the user logs in
correctly, we get a "HTTP Status 400 - Invalid direct reference to form
login page" reply. The description field says: "The request sent by the
client was syntactically incorrect (Invalid direct reference to form login
page)." The funny thing is: when the user logs in INcorrectly, everything
goes ok (the user gets the right error page).

What's wrong? How can I see what data j_security_check is getting, so I can
debug the problem? Does anyone have a solution whatsoever?
The Tomcat server is always behind the router in a dmz. I can not / will not
install Tomcat on the router for security reasons.

If anyone can give me directions where to look for an awnser, I'd be
gratefull. At the moment I'm just guessing, and I don't have any more
ideas... (So I'm kinda desperate)


To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message