Hi Manohar,
I think I didn't make myself clearer. I was asking about how the basic HTTP Authentication related to the HttpSession management.
Here's the scenario in detail:
Suppose I have /servlet/ directory protected under Apache/Jserv, any browser or application requesting a servlet in that directory will be presented with an authentication request. The browser handles this and pops up a box to ask for username/passwd. On similar lines, I wrote a Java app which uses Java.net.Authenticator class to handle this request and process it. Everything works fine till here.
Now here's the actual problem:
Now once I access this URL (using openURL) from my application,
http://myserver/servlet/servlet1 , it asks for authentication, which my application handles and lets me access the servlet1.
Now when I try accessing
http://myserver/servlet/servlet2 , it throws back that HTTP Authentication request.
The same set of servlets: servlet1 and servlet2, when accessed through a browser, show different behavior. While it does ask for authentication for servlet1, once I get past the authentication using browser, when I access servlet2, the webserver does not ask me to authenticate.
Does my problem make sense yet...? Please help.