Return-Path: Delivered-To: apmail-tomcat-users-archive@www.apache.org Received: (qmail 10794 invoked from network); 3 Apr 2007 10:26:44 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 3 Apr 2007 10:26:44 -0000 Received: (qmail 19668 invoked by uid 500); 3 Apr 2007 10:26:38 -0000 Delivered-To: apmail-tomcat-users-archive@tomcat.apache.org Received: (qmail 19641 invoked by uid 500); 3 Apr 2007 10:26:38 -0000 Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Tomcat Users List" Delivered-To: mailing list users@tomcat.apache.org Received: (qmail 19626 invoked by uid 99); 3 Apr 2007 10:26:38 -0000 Received: from herse.apache.org (HELO herse.apache.org) (140.211.11.133) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 03 Apr 2007 03:26:38 -0700 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests= X-Spam-Check-By: apache.org Received-SPF: neutral (herse.apache.org: local policy) Received: from [63.240.77.82] (HELO sccrmhc12.comcast.net) (63.240.77.82) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 03 Apr 2007 03:26:30 -0700 Received: from [192.168.1.47] (c-69-143-26-154.hsd1.va.comcast.net[69.143.26.154]) by comcast.net (sccrmhc12) with ESMTP id <200704031026090120066rqje>; Tue, 3 Apr 2007 10:26:09 +0000 Message-ID: <46122C35.10907@christopherschultz.net> Date: Tue, 03 Apr 2007 06:28:05 -0400 From: Christopher Schultz User-Agent: Thunderbird 2.0b2 (Windows/20070116) MIME-Version: 1.0 To: Tomcat Users List Subject: Re: sessionhelp References: <6029AFF0C3435D48AB2C9AE7FC87BA240116B5FA@bfmail3.BFEHOST01.local> In-Reply-To: <6029AFF0C3435D48AB2C9AE7FC87BA240116B5FA@bfmail3.BFEHOST01.local> X-Enigmail-Version: 0.94.1.2.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit X-Virus-Checked: Checked by ClamAV on apache.org -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mark, Mark Goking wrote: > In my case, I wish to manually create a jsessionid and log the user in > the web app without using j_security_check. Is this possible? You can certainly do this yourself, if you are willing to write some code. You're better off not doing it in JSP, though. There's a project called securityfilter which emulates container-managed authentication and authorization, and is very easy to override the way that logins are processed. Check it out at http://securityfilter.sourceforge.net. You will have to write some of your own code, but there's no way around that. At least you don't have to write the whole framework itself. ;) - -chris -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGEiw19CaO5/Lv0PARAk/ZAKCU2lA78CRjcFfpCQxBlXywFBMvBQCfXvoQ E1NPDnsb24BROLabUGZ440I= =65Ak -----END PGP SIGNATURE----- --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org For additional commands, e-mail: users-help@tomcat.apache.org