This week's book giveaway is in the OO, Patterns, UML and Refactoring forum. We're giving away four copies of Refactoring for Software Design Smells: Managing Technical Debt and have Girish Suryanarayana, Ganesh Samarthyam & Tushar Sharma on-line! See this thread for details.
Is there a way I can login a user into Tomcat 4.X using server side code? I need to have a page which allows a user to enter credit card information, and allow them in without having a real "user" associated with the account. I think the best solution is to have a Generic Credit user, who the user is logged in as when their credit card information is processed, which their information stored in their session. The "Generic Credit User" would have a Credit User role, while other users would have a real account, with a subscription role. I can think of ways of doing the above, but they require the generic username and password to be embedded in the html. The standard form based login I do not believe will allow me to do things such as having the price printed on the page (it will vary), and other small problems like that. Also, I would need to attach objects to the session when the user is authenticated. Any ideas? I would prefer to use some type of container manager security rather than a home grown tracking system. -Pete