-
1. Re: Modifying j_username before calling j_security_check
wdrai Mar 29, 2004 4:16 PM (in response to anodos)Have you tried with a servlet filter which intercepts the j_security_check call ?
-
2. Re: Modifying j_username before calling j_security_check
ant Mar 30, 2004 1:54 AM (in response to anodos)I have tried using a servlet-filter in order to do pre- and post-processing to j_security_check but it didn't work. There are some other people reporting that filtering j_security_check isn't possible.
Also using a custom loginmodule isn't possible because of caching security information (see http://www.jboss.org/index.html?module=bb&op=viewtopic&t=47640).
Gerd -
3. Re: Modifying j_username before calling j_security_check
starksm64 Mar 30, 2004 11:06 AM (in response to anodos)The only way you will be able to do this then is with javascript on the client side as there is no standard mechanism to pre process the form post on the server side.
-
4. Re: Modifying j_username before calling j_security_check
anodos Mar 30, 2004 2:12 PM (in response to anodos)We have tried the 'redirect' option, and it works with JBoss 4 / Tomcat 5, though we have not tried it with other containers. Again, we do not prefer this option as it encodes the username and password on the URL (though we do SHA1 the password before it is put onto the URL). For now, we can continue with development, and at a later time will try using HttpClient with POST.