I have a jaas.login:
com.tomcat.test.security.CustomLoginModule required debug=true;
In my web.xml I have:
When I go to a URL /secured/secured.html I get the login popup and everything works well.
I tried to implement a different servlet (not secured) and perform a manual login:
And I also created the CustomCallbackHandler:
In the LoginServlet the login is successfull, but when from the same browser I go to /secured/secured.html I still get the login popup from the browser.
It seems that the session does not 'remember' the manual login.
Can someone please tell me what I am doing wrong? I don't know what else to do