wood burning stoves
The moose likes BEA/Weblogic and the fly likes WebLogic Form-Based Authentication Problem Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of Customer Requirements for Developers this week in the Jobs Discussion forum!
JavaRanch » Java Forums » Products » BEA/Weblogic
Bookmark "WebLogic Form-Based Authentication Problem" Watch "WebLogic Form-Based Authentication Problem" New topic

WebLogic Form-Based Authentication Problem

Peter Smith

Joined: Feb 03, 2004
Posts: 5
I am trying to set up Form-Based Authentication on WebLogic8.1
The Problem:
If the user provides correct userid/password, he gets access to the protected resource as required, but if he provides incorrect userid/password, he gets a 403 Forbidden page, instead of getting the login failure page.
The Descriptors:
<!DOCTYPE web-app PUBLIC "-//Sun Microsystems, Inc.//DTD Web Application 2.3//EN" "http://java.sun.com/dtd/web-app_2_3.dtd">
<web-resource-name>My secure resources</web-resource-name>
<description>Resources to be placed under security control.</description>
<description>The role allowed to access our content</description>
<!DOCTYPE weblogic-web-app PUBLIC "-//BEA Systems, Inc.//DTD Web Application 8.1//EN" "http://www.bea.com/servers/wls810/dtd/weblogic810-web-jar.dtd">
What am I missing here? Why doesnt it redirect to /LoginError.jsp instead of showing the 403 Forbidden page?
javai girl

Joined: Jun 14, 2004
Posts: 2
I'm getting the same problem!
Were you able to find the solution???

[ July 01, 2004: Message edited by: javai girl ]
yogendra babu

Joined: Jul 01, 2002
Posts: 17
Will the below config in web.xml helps u ???

sharon Developer

Joined: Jul 14, 2005
Posts: 3
No, it did not. But I test the security web application come with weblogic8.1 examples, it works fine. I still did not figure out what's the problem.
sharon Developer

Joined: Jul 14, 2005
Posts: 3
It seems weblogic web server has a very high requirement for error page syntax. I copied fail-login.html from weblogic security webapp sample src folder to my application folder and make it as my login error page. My page works now.
It is sorta covered in the JavaRanch Style Guide.
subject: WebLogic Form-Based Authentication Problem
It's not a secret anymore!