Dennis, For just that webapp, you can always bump the session timeout to a very high value. That would just take a change to the web.xml, no change of authentication method needed. HTH - Richard
-----Original Message----- From: Klotz Jr, Dennis [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 08, 2006 3:54 PM To: Tomcat Users List Subject: basic question regarding BASIC and FORMS logins Greetings all, I'm trying to get my facts straight, and I'm hoping you will help. I am using forms based login right now and when the tomcat session times out, the user has to login again. No surprise there. Now, some of our customers don't like this, so for them - can I use a BASIC login (with SSL possibly) and their user will always be able to use the session as long as the browser doesn't go away. This is even if the tomcat session expires! Is that right? Regards, -Dennis Klotz --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
