Hi, In the security example when I try to access the protected directory it redirects me to the login.jsp page. It shows in the log ---- 2001-05-07 02:38:37 - ContextManager: AccessInterceptor: checking /jsp/security/protected/index.jsp 2001-05-07 02:38:37 - ContextManager: AccessInterceptor: matched /jsp/security/protected/* DELETE GET POST PUT null tomcat role1 2001-05-07 02:38:37 - ContextManager: AccessInterceptor: checking /jsp/security/login/login.jsp ---- Realm.authenticate() is called but there is nothing to authenticate. I then enter username/password and hit login. I am then shown the index.jsp from the example. The log shows ---- 2001-05-07 02:39:29 - ContextManager: AccessInterceptor: checking /jsp/security/login/j_security_check 2001-05-07 02:39:29 - ContextManager: AccessInterceptor: checking /jsp/security/protected/index.jsp 2001-05-07 02:39:29 - ContextManager: AccessInterceptor: matched /jsp/security/protected/* DELETE GET POST PUT null tomcat role1 ---- The realm.authenticate() is called and my realm authenticates OK. However, if my protected resource is a simple web page then tomcat first redirects to the login form as above and the log shows ---- 2001-05-07 02:50:40 - ContextManager: AccessInterceptor: checking /HelloWorld.html 2001-05-07 02:50:40 - ContextManager: AccessInterceptor: matched /HelloWorld.html DELETE GET POST PUT null tomcat role1 sysadmin 2001-05-07 02:50:40 - ContextManager: AccessInterceptor: checking /jsp/security/login/login.jsp ---- When I hit the login button the realm.authenticate() mechanism is not called and all that is shown in the log is ---- 2001-05-07 02:50:48 - ContextManager: AccessInterceptor: checking /jsp/security/login/j_security_check ---- Whatever I type in the username/password fields is not used. Why is it not calling the realm.authenicate(). Rgds -- Antony Bowesman Teamware Group [EMAIL PROTECTED] tel: +358 9 5128 2562 fax: +358 9 5128 2705
