Hello ALl: Here is my case. I am using Apache/Tomcat for my servlet/JSP application. I plan to use a form-based authentification approach. From what I understand, for a form-based authentification, the Tomcat will automatically check the userId and Password from the HTTp request, against the userID and Password listed in the apps-xxx.xml file for my Webapplication. What I want to do is that I want Tomcat to check the UserID and password by a password text file. How do I do it? Which file settings do I need to change and how? In other words, I want to use a servlet to do the form-based authentification check, instead of the default xml check. The reason is that I need to overwrite the UserID/Password file completely often, I do not want to modify the xml by hand, so it is much easier to process with a password text file, that is why I want to do the above. Please help, thanks.
------------------ Sun Certified Programmer for Java Platform