Thank you all for replying I wanted to prevent the users who were deleted already to logging in.
I resolve my problem by extending a class from JDBCRealm and override the getConnection() method (I'm not sure about the method name) and put my "select" statement with my favorite where clause "where status = 0 and username = ?" and in security-filter.xml I declared my class instead of tomcat's JDBCRealm thank you again -- View this message in context: http://www.nabble.com/a-question-about-user-athentication-tf4010274.html#a11454885 Sent from the Tomcat - User mailing list archive at Nabble.com. --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
