• Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

FORM type security implementation problem?

 
yamini nadella
Ranch Hand
Posts: 257
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I tried to implement FORM security according to the Hanumanth Deshmuck book.
in web.xml I made entries like below

<login-config>
<auth-method>FORM</auth-method>
<form-login-config>
<form-login-page>/jsp/formlogin.html</form-login-page>
<form-error-page>/jsp/formerror.html</form-error-page>
</form-login-config>
</login-config>


formlogin.html is

html>
<body>
<h4> please login: </h4>
<form method="POST" action="j_security_check">
<input type="text" name="j_username">
<input type="password" name="j_password">
<input type="submit" value="OK">
</form>
</body>
</html>

I also created a simple form-error-page html.

Now when I executed http://localhost:8080/myapp/
HTTP status 500 - java.lang.ClassNotFoundException: org.apache.jsp.index_jsp
error occurred.

According to my idea http://localhost:8080/myapp/ has to take me to formlogin.html and after pressing submit button servlet container has to validate and has to give proper message. is it not the functionality.


I kept formlogin.html in <welcome-page-list> then execution of http://localhost:8080/myapp/ shown the html form after pressing submit button then it gave 404 error like resource not found "/myapp/j_security_check"


Thanks in advance
Lena.
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic