En l'instant précis du 01/22/07 17:05, Marcel Frehner s'exprimait en ces
termes:
> Thank you for your answer David. My conclusion would be to move my
> protected resources to a separate folder and adjust my web.xml
> accordingly. Of course you were absolutely right about the 403 status.
> My Firefo
Thank you for your answer David. My conclusion would be to move my
protected resources to a separate folder and adjust my web.xml accordingly.
Of course you were absolutely right about the 403 status. My Firefox had an
existing but not authorised user stored and I kept testing with that one.
A
I see several potential problems as a side note before the core problem...
First, you map your security constraint to /*, that mean *nothing* in
your webapp will be accessible prior to login, this includes pictures, css.
Second, be aware to never access directly login.html, it should be
tomcat that
I'm trying to set up form-based authentication in a JSF Application on
Tomcat 5.5.4. I've got a login page, a welcome page and an error page. On
entering the right username and password I get redirected to welcome.jsp.
On entering the wrong credentials IE displays my custom error.html with a
li
