Return-Path: X-Original-To: apmail-tomcat-users-archive@www.apache.org Delivered-To: apmail-tomcat-users-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id B281B971D for ; Wed, 5 Oct 2011 18:00:25 +0000 (UTC) Received: (qmail 86514 invoked by uid 500); 5 Oct 2011 18:00:19 -0000 Delivered-To: apmail-tomcat-users-archive@tomcat.apache.org Received: (qmail 86471 invoked by uid 500); 5 Oct 2011 18:00:19 -0000 Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Tomcat Users List" Delivered-To: mailing list users@tomcat.apache.org Received: (qmail 86462 invoked by uid 99); 5 Oct 2011 18:00:19 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 05 Oct 2011 18:00:19 +0000 X-ASF-Spam-Status: No, hits=-0.0 required=5.0 tests=RCVD_IN_DNSWL_NONE,SPF_HELO_PASS,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: domain of appy74@dsl.pipex.com designates 212.74.114.38 as permitted sender) Received: from [212.74.114.38] (HELO mk-outboundfilter-2.mail.uk.tiscali.com) (212.74.114.38) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 05 Oct 2011 18:00:11 +0000 X-Trace: 486128038/mk-outboundfilter-2.mail.uk.tiscali.com/PIPEX/$PIPEX-ACCEPTED/pipex-customers/81.86.114.41/None/appy74@dsl.pipex.com X-SBRS: None X-RemoteIP: 81.86.114.41 X-IP-MAIL-FROM: appy74@dsl.pipex.com X-SMTP-AUTH: X-Originating-Country: GB/UNITED KINGDOM X-MUA: Microsoft Outlook 14.0 X-IP-BHB: Once X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: AgEFACOajE5RVnIp/2dsb2JhbABChG2jJoEGgVMBAQQBCAIZBSYIKAcBAwIGAxEEAQEBAgISARADAgIZGAgNCQgCBAgHBAEKBQ0Eh1wCpiWRT4EtgmoBgX2BFASZAogHhCk X-IronPort-AV: E=Sophos;i="4.68,492,1312153200"; d="scan'208";a="486128038" X-IP-Direction: IN Received: from 81-86-114-41.dsl.pipex.com (HELO Ustane) ([81.86.114.41]) by smtp.pipex.tiscali.co.uk with ESMTP; 05 Oct 2011 18:59:50 +0100 From: "Martin O'Shea" To: "'Tomcat Users List'" References: <1317746617.4e8b37b9f03d5@netmail.pipex.net> <99C8B2929B39C24493377AC7A121E21FB0038543D8@USEA-EXCH8.na.uis.unisys.com> <1317748330.4e8b3e6aefdcb@netmail.pipex.net> <4E8B46DA.6020605@christopherschultz.net> <4E8B4A01.4080709@ice-sa.com> <1317751568.4e8b4b103edd5@netmail.pipex.net> <4E8B56D0.7030506@ice-sa.com> <00a301cc8375$32988390$97c98ab0$@dsl.pipex.com> <4E8C9646.3030703@christopherschultz.net> In-Reply-To: <4E8C9646.3030703@christopherschultz.net> Subject: RE: Using multiple login pages Date: Wed, 5 Oct 2011 18:59:51 +0100 Message-ID: <00ac01cc8388$94c6a8e0$be53faa0$@dsl.pipex.com> MIME-Version: 1.0 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Mailer: Microsoft Outlook 14.0 Thread-Index: AQE0g4/R1ojm70ppBm5oJVQqETk4LQH6gidqAlmmnr0B1jZ2DAJJiCaiAkqwA7cCD7nv7ALPbohXAiQoMw6WD/n2IA== Content-Language: en-gb X-Virus-Checked: Checked by ClamAV on apache.org I have it now. There was a redirection going on in a method called from = a scriptlet in the login page. It now seems to be OK. Thanks Chris. But one thing bugs me still: you said that you can have 'different login = pages for different types of resources you're trying to reach.' Can you = give any pointers about this? .-----Original Message----- From: Christopher Schultz [mailto:chris@christopherschultz.net]=20 Sent: 05 Oct 2011 18 39 To: Tomcat Users List Subject: Re: Using multiple login pages -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Martin, On 10/5/2011 11:41 AM, Martin O'Shea wrote: > This follows on from yesterday's discussion about whether in my=20 > application, I can have more than one page with an embedded login form = > or not. >=20 > I've been looking over the servlet spec (V2.2) and it seems that I=20 > can't actually do this which is a shame. Do what, have different login pages for different types of resources = you're trying to reach? Sure you can: try reading my responses. > So I'm now looking at a more conventional log in from a login page. > But can anyone explain to me why I don=E2=80=99t see my login page = when I run=20 > the application? >=20 > Login.jsp contains the following: This isn't relevant if you're not seeing it. > Which corresponds to the following in web.xml: >=20 > > /jsp/about/concept.jsp > >=20 > =20 > /aboutConcept > =20 > ADMIN > >=20 > > /jsp/security/protected/login.jsp > >=20 /jsp/security/protected/error.jsp > >=20 > But when I run the application, all I get is the html of the page=20 > specified in the welcome file list? Is that a question or a statement? > But if I then invoke a link from the welcome file, I get the login=20 > page. Surely it should be the other way around? Your welcome file is not protected in any way, so you are not challenged = for credentials. If you want to login to see every page on your site, = you should have /* in your = . - -chris -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk6MlkYACgkQ9CaO5/Lv0PB3nQCfRf0g/erXaD2kOPyaBCMJW/h0 Ce0An0EbOElkSImGQYK8y+JkZdtcrIqL =3Dwbh5 -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org For additional commands, e-mail: users-help@tomcat.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org For additional commands, e-mail: users-help@tomcat.apache.org