Forums Register Login

j_security_check + LoginModule

+Pie Number of slices to send: Send
Hello there! I'm using j_security_check + a Custom LoginModule to implement web security (in our SRS we don't need bean method level security). Well for a given scenario (user tries to login and enter an invalid userName/password) it's working just fine, since I throw a LoginException. My question is, I have another scenarios:

Password expired
User deactivated

Each one should redirect to a diferent page. Since j_security_check always sends the user to the first page requested, or the default error page, how can one accomplish that?

Thanks a lot

Vinicius Carvalho
+Pie Number of slices to send: Send
from what i know, j_security_check is strictly thumbs-up/thumbs-down, you logged in successfully or you didn't. there is nothing in it to handle explaining why you didn't.

so you are looking at a custom implementation, where you handle the entire login process yourself. some app-servers (jboss is the one i have in mind) could let you drop in a plugin and keep the j2ee login, but that's obviously app-server-specific
Hang a left on main. Then read this tiny ad:
a bit of art, as a gift, that will fit in a stocking
https://gardener-gift.com


reply
reply
This thread has been viewed 1388 times.
Similar Threads
action="j_security_check"
Using default JAAS Mechanism in Websphere makes applications to access the context path of the other
j_security_check .. how to check encrypted password ..
need advice on security
How does the "j_security_check" work?
More...

All times above are in ranch (not your local) time.
The current ranch time is
Mar 28, 2024 03:41:15.