i use
tomcat 4.0.2 and have form based authentication.
it all working fine.
i can restrict access to certain folder, by redirecting them to the login page.
the problem is, if someone accidently go to the login page directly, ie:
http://localhost:8080/login/login.jsp, and enter the correct username and password, then errorpage "Apache Tomcat/4.0.2 - HTTP Status 400 - Invalid direct reference to form login page" will appear, instead of redirecting the user to the main page.
so, what should i do, in order to redirect successful login user to the main page, if they access the login page directly?...