j_security

Hey guys..
The Application i'm working on uses j_security for login. Now i have to implement a check instantly after login for various statuses (like, verify, deactivated, etc) and i don't have any idea how to do..
Do you know where the login itself is implemented when using j_security or how i could realize this feature?

Probably not in a portable manner. The point of container-managed auth is that the container does it, not the app itself, and so there are no hooks into it.

If you're using a particular servlet container (such as Tomcat), you could write a Valve (I think), or extend the Realm being used, to do extra stuff, but not with the Servlet API.

i'm using glassfish so i have to look if i can change some things on the realms there?