tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Vincent Aumont <>
Subject Re: Realm Authentication and Password Change
Date Mon, 10 Nov 2003 16:24:07 GMT
A possible solution:
- Your custom realm sets a session attribute to indicate that the password must
be changed.
- You create a filter that checks this attribute and redirect the use to the
password change page if needed.


> Goal: Using forms based authentication, a user logs into a site with a valid
> user ID/password, and is redirected to a page explaining that the password
> has expired and user must change their password.
> What's a good way to reach this goal? I've been working with a custom realm
> module, so I know when the password needs to be changed, I just can't figure
> out how to redirect the user to the password change page.
> Thanks for any help,
> Jim Shain
> Sr. Architect
> Fidelity Information Services
> ---------------------------------------------------------------------
> To unsubscribe, e-mail:
> For additional commands, e-mail:

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message