HTTP Status 403 - Access to the requested resource has been denied

I'm trying to redirect user who attempts to open login page if there is a cookie indicating that he is already logged in but I'm getting this message:
"HTTP Status 403 - Access to the requested resource has been denied".
This is my manage bean:

package org.domain.prodavnicaseam.session;

import java.io.IOException;
import java.util.ArrayList;
import java.util.Collection;
import java.util.Iterator;

import javax.ejb.Remove;
import javax.ejb.Stateful;
import javax.ejb.Stateless;
import javax.faces.context.FacesContext;
import javax.faces.event.AbortProcessingException;
import javax.faces.event.ActionEvent;
import javax.faces.event.ActionListener;
import javax.persistence.EntityManager;
import javax.persistence.Persistence;
import javax.persistence.PersistenceContext;
import javax.persistence.Query;
import javax.servlet.http.Cookie;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

import org.domain.prodavnicaseam.entity.Cart;
import org.domain.prodavnicaseam.entity.CartItem;

import org.domain.prodavnicaseam.entity.Customer;
import org.jboss.seam.ScopeType;
import org.jboss.seam.annotations.Begin;
import org.jboss.seam.annotations.Destroy;
import org.jboss.seam.annotations.In;
import org.jboss.seam.annotations.Name;
import org.jboss.seam.annotations.Out;
import org.jboss.seam.annotations.Scope;
import org.jboss.seam.faces.FacesMessages;
import org.jboss.seam.security.Identity;

import javax.faces.context.*;

@Stateful
@Name("register_bean")
public class LoginBeanAction implements LoginBean {

@In(required = false)
	private Customer customer;

public boolean isCheckBox() {
		return checkBox;
	}

public void setCheckBox(boolean checkBox) {
		this.checkBox = checkBox;
	}

private boolean checkBox;

private boolean logged;

@PersistenceContext
	private EntityManager em;

private TableId[] id;

public TableId[] getId() {
		return id;
	}

public void setId(TableId[] id) {
		this.id = id;
	}

private Collection<Cart> cartCollection = new ArrayList<Cart>();

@In
	private FacesMessages facesMessages;

public Collection<Cart> getCartCollection() {
		return cartCollection;
	}

public void setCartCollection(Collection<Cart> cartCollection) {
		this.cartCollection = cartCollection;
	}

public Customer getCustomer() {
		return customer;
	}

public void setCustomer(Customer customer) {
		this.customer = customer;
	}

public EntityManager getEm() {
		return em;
	}

public void setEm(EntityManager em) {
		this.em = em;
	}

public boolean GetLogged() {

if (logged) {
			return true;
		} else
			return false;
	}

public void CheckUsernameCookie() {
	//	boolean result = false;
		FacesContext facesContext = FacesContext.getCurrentInstance();
		Cookie cookies[] = ((HttpServletRequest) facesContext
				.getExternalContext().getRequest()).getCookies();

int length = cookies.length;
		if (length > 0) {
			for (int i = 0; i < cookies.length; i++) {
				Cookie cookie = cookies[i];
				if (cookie.getName().equals("username")) {
					if (!cookie.getValue().equals("")) {
						Customer customer1 = null;
						Query query = em
								.createQuery(
										"select c from Customer c where c.first_name=:value")
								.setParameter("value", cookie.getValue());
						try {
							customer1 = (Customer) query.getSingleResult();
						} catch (Exception e) {
							logged = false;

}
						if (customer1 != null) {

this.customer = customer1;
							this.cartCollection = customer1.getCartCollection();
							logged = true;
						//	result = true;
							try {
								((HttpServletResponse) facesContext
										.getExternalContext().getResponse())
										.sendRedirect("/Prodavnica-seam/login_success.xhtml");
							} catch (IOException e) {
								// TODO Auto-generated catch block
								e.printStackTrace();
							}
						}
					}
				}

}
		}
	//	return result;
	}

public void invalid() {
		facesMessages.add("Morate se ulogovati!!!");
	}

public Customer GetCustomer() {

// Query query = em
		// .createQuery("select c from Customer c where c.first_name=#{customer.first_name}");
		// Customer customer = (Customer) query.getSingleResult();
		//
		// return customer;

return this.getCustomer();
	}

@Begin(join = true)
	public String IsExists() {
		String out = "error";
		Customer customer1 = null;
		Query query = em
				.createQuery("select c from Customer c where c.first_name=#{customer.first_name}");
		try {
			customer1 = (Customer) query.getSingleResult();
		} catch (Exception e) {
			logged = false;
			out = "error";
		}
		if (customer1 != null) {

if (customer.getFirst_name().equals(customer1.getFirst_name())) {
				out = "login_success";
				this.customer = customer1;
				this.cartCollection = customer1.getCartCollection();
				logged = true;
				if (checkBox) {
					Cookie cookie = new Cookie("username", customer1
							.getFirst_name());
					cookie.setMaxAge(60 * 60 * 24 * 365);
					FacesContext facesContext = FacesContext
							.getCurrentInstance();
					((HttpServletResponse) facesContext.getExternalContext()
							.getResponse()).addCookie(cookie);
				}
			} else {
				// out="error";
				logged = false;
			}
		} else {
			logged = false;
		}

return out;
	}

public Collection<TableId> GetCartIds() {
		Customer customer1 = null;
		Collection<TableId> ids = new ArrayList<TableId>();
		Query query = em
				.createQuery("select c from Customer c where c.first_name=#{customer.first_name}");
		try {
			customer1 = (Customer) query.getSingleResult();
		} catch (Exception e) {
			// out="error";
		}
		if (customer1 != null) {
			// out = "login_success";
			// this.customer=customer1;
			Collection<Cart> carts = customer1.getCartCollection();

// ids=new TableId[carts.size()];
			// int index=0;
			for (Iterator iterator = carts.iterator(); iterator.hasNext();) {
				Cart cart = (Cart) iterator.next();
				TableId id = new TableId();
				id.setTable_id(cart.getCart_id());
				ids.add(id);

}
		}

return ids;
	}

public Collection<Cart_item> GetCartItems(int cart_id) {
		Collection<Cart_item> cart_items = new ArrayList<Cart_item>();
		Customer customer1 = null;
		Query query = em
				.createQuery("select c from Customer c where c.first_name=#{customer.first_name}");
		try {
			customer1 = (Customer) query.getSingleResult();
		} catch (Exception e) {

}
		if (customer1 != null) {
			Collection<Cart> carts = customer1.getCartCollection();
			if (carts != null) {
				for (Iterator iterator = carts.iterator(); iterator.hasNext();) {
					Cart cart = (Cart) iterator.next();
					if (cart.getCart_id() == cart_id) {
						Collection<CartItem> items = cart
								.getCartitemCollection();
						for (Iterator iterator2 = items.iterator(); iterator2
								.hasNext();) {
							CartItem cartItem = (CartItem) iterator2.next();
							Cart_item cart_item = new Cart_item();
							cart_item.setCart_item_id(cartItem.getItem_id());
							cart_items.add(cart_item);
						}
					}
				}
			}

}
		return cart_items;
	}

public Collection<Cart> GetCartCollection() {
		return this.getCartCollection();
	}

@Remove
	@Destroy
	public void Destroy() {

}
}

Redirection attempt is in CheckUsernameCookie() method.
Any help or suggestion?

try using "/Prodavnica-seam/login_success.seam" instead of "/Prodavnica-seam/login_success.xhtml"

the suffix should be ".seam" and not ".xhtml"

Thanks,that helped but now I'm having another problem.
This is login_success page:

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
   "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<f:view xmlns="http://www.w3.org/1999/xhtml"
	xmlns:ui="http://java.sun.com/jsf/facelets"
	xmlns:f="http://java.sun.com/jsf/core"
	xmlns:h="http://java.sun.com/jsf/html"
	xmlns:a="http://richfaces.org/a4j"
	xmlns:s="http://jboss.com/products/seam/taglib" contentType="text/html"
	xmlns:rich="http://richfaces.org/rich"
	xmlns:x_rt="http://java.sun.com/jstl/xml_rt"
	xmlns:c_rt="http://java.sun.com/jstl/core_rt"
	xmlns:fmt_rt="http://java.sun.com/jstl/fmt_rt"
	xmlns:sql="http://java.sun.com/jstl/sql"
	xmlns:x="http://java.sun.com/jsp/jstl/xml"
	xmlns:c="http://java.sun.com/jstl/core"
	xmlns:fn="http://java.sun.com/jsp/jstl/functions"
	xmlns:fmt="http://java.sun.com/jsp/jstl/fmt">

<html>
	<head>
	<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
	<title>Prodavnica-seam</title>

<ui:insert name="head" />
	</head>
	<body>
	
	<h:outputText value="Successfully logged as:" />
	<h:outputText value="#{register_bean.GetCustomer().first_name}" />
	<br />
	
	<ui:repeat value="#{register_bean.GetCartIds()}" var="ids">
		<h:outputText
			value="Kopra sa id-em #{ids.table_id} sadrzi sledece artikle:" />
		<br />
		<rich:dataOrderedList var="item"
			value="#{register_bean.GetCartItems(ids.table_id)}">
			<h:outputText value="Artikal sa id-em: #{item.cart_item_id}" />
		</rich:dataOrderedList>
	</ui:repeat>
	<br/>
	<h:outputLink value="page.seam?cid=#{conversation.id}">
		<h:outputText value="Next page" />		
	</h:outputLink>
		
	
	</body>
	</html>
</f:view>

At the line where should be the display of the username there is only a blank space (Successfully logged as).Do you know why?

Predrag Ristic wrote:
<h:outputText value="#{register_bean.GetCustomer().first_name}" />

this line is returning null ...

check the spelling for each term ....

for this to work you need a method "GetCustomer()" on class "register_bean" and a method "getFirst_name()" on the object returned by "GetCustomer()"

your naming convention seems to have let you down here

ideally I would do this way...

the register bean ....

the customer bean ...

the jsf code ....

I hope this helps.

-Bhuvnesh

Thanks,I'll try!!!