This week's giveaway is in the Android forum.
We're giving away four copies of Android Security Essentials Live Lessons and have Godfrey Nolan on-line!
See this thread for details.
The moose likes JSP and the fly likes login-config in web.xml & redirection Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of Android Security Essentials Live Lessons this week in the Android forum!
JavaRanch » Java Forums » Java » JSP
Bookmark "login-config in web.xml & redirection" Watch "login-config in web.xml & redirection" New topic

login-config in web.xml & redirection

Efrat Bar-Nahum
Ranch Hand

Joined: Jan 19, 2006
Posts: 57

I have a JSF web application and I use the JAAS mechanism to log in.
I have a simple index page which is the first page of the application:

In my web.xml I redirect to the login page in case of unsecured entrance:

So the scenario is this:
1) The user opens the application URL (http://localhost:8080/EM/).
2) The index.jsp is loaded and redirects to device.jsp.
3) Because we didn't go through the login procedure it brings us to the login.jsp.
4) In case of success it automatically returns to the device.jsp page.

This causes the first pages of the application (in my case the the login.jsp before login and the device.jsp after login) to appear without its full URL path.
When I go on with the navigation in the application, it changes and I get the full path (even if I go back to the device page).
But before & after login the login & device pages appears only with the application's URL (e.g.http://localhost:8080/EM/).

This causes my problems when trying to use images, js files etc...)

How can I force a "redirect" and get the full path (e.g. http://localhost:8080/EM/faces/html/QOD_GW/device.jsp, http://localhost:8080/EM/faces/html/common/login.jsp)??

Thanks a lot,
I agree. Here's the link:
subject: login-config in web.xml & redirection
Similar Threads
Dobut in Realm Authentication
Unable to apply security
LoginFilter & j_security_check
Problems linking CSS files from 'form-login-config'
Tomcat Security