tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Vincent Aumont <vincent.aum...@vsl.ca>
Subject Re: Realm Authentication and Password Change
Date Mon, 10 Nov 2003 16:24:07 GMT
A possible solution:
- Your custom realm sets a session attribute to indicate that the password must
be changed.
- You create a filter that checks this attribute and redirect the use to the
password change page if needed.


-Vincent.


> Goal: Using forms based authentication, a user logs into a site with a valid
> user ID/password, and is redirected to a page explaining that the password
> has expired and user must change their password.
> 
> What's a good way to reach this goal? I've been working with a custom realm
> module, so I know when the password needs to be changed, I just can't figure
> out how to redirect the user to the password change page.
> 
> Thanks for any help,
> Jim Shain
> Sr. Architect
> Fidelity Information Services
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
> For additional commands, e-mail: tomcat-user-help@jakarta.apache.org
> 
> 
> 





---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org


Mime
View raw message