In case of the other three you just include the <auth-mathod> element in the <login-config> in the DD and that is it. The container takes care of everything else. But, in the case of form-login, if you do not have session-tracking or cookies or SSL, the container will not recognize the client in subsequent transactions.
posted 12 years ago
Thanks for your reply
So I left, I came home, and I ate some pie. And then I read this tiny ad: