If you are already accessing a DB for user login info, why would you need to resort to a secondary text file?
hth,
bear
P.S. The
Servlets or
JSP forums are usually the best places to ask web app related questions. (Or the
Tomcat forum if it's Tomcat specific).