Well, that's how form based authentication works
.
Form's
action="j_security_check" sends form field values to container, which handles login process and forwards to asked/secured page (or
servlet) if login succeeds.
I was thinking to use this login form
"explicitly": just to go to this page, enter login details and press
Submit button. But, as I understood, that can't be done when using form based security.
So, I have implemented this like: when user wants to login, user clicks on login link somewhere on the page, which is a link to secured, user account details jsp page.