File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
The moose likes Security and the fly likes Security Constraint problem Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of Java Interview Guide this week in the Jobs Discussion forum!
JavaRanch » Java Forums » Engineering » Security
Bookmark "Security Constraint problem" Watch "Security Constraint problem" New topic

Security Constraint problem

Manuel Manhart

Joined: May 23, 2006
Posts: 1

I got the following problem:
I have a J2EE web application and added a security constraint for it, so that we are able to use the security of the application server (e.g. LDAP).
But the "normal" login procedure should not be touched in any way, so it should be possible that users may login over a standard login as well.

We use struts (to make everything a little more complex ;-) and two login modules.

My problem is, if I use the normal login, instead of the the j2ee_login.jsp is called which is absolutly nonsense.

I am not sure if it lies in my struts-config.xml or if my application.xml and/or web.xml is wrong.

The j2ee_login.jsp login form should only be shown if the user calls the url j2ee.jsp and is not authenticated.

I hope anyone can help me with this. (and that security is the right forum to post this...)

thanks a lot, Manuel

[ May 23, 2006: Message edited by: Manuel Manhart ]
[ May 23, 2006: Message edited by: Manuel Manhart ]
I agree. Here's the link:
subject: Security Constraint problem
It's not a secret anymore!