Can you give us a bit more details about your use case? What page you looking first, how you get to the authentication page and what happened after authentication.

Form-based JAAS authentication redirect user to last accessed page.
Don't protect by sequrity constraints /a4j.res/* url's. You don't have any reasons to protect open-sourse resources.

Hi guys,

Did anybody found the solution of the problem above ?.
I've got the same kind of error; I'm using jboss 5.0.1.GA, faceletes 1.1.15.B1, faces 1.2, richfaces 3.3.0.GA and JAAS.
When I ask for the welcome page (welcome.jsf), the loging page is redered for authentication and after authentication succeeded
I get this link http://localhost:8080/myapp/a4j/g/3_3_0.GAorg/richfaces/renderkit/html/scripts/skinning.js.jsf instead of the original welcome page.
The default welcome file index.html has a call to another welcome.jspx file (Welcome.jspx does not have any "<a4j:" tag)

Everything works fine, if I remove the JAAS security section from the web.xml.

security seccion in web.xml:

<security-role>
<role-name>Admin</role-name>
</security-role>
<security-constraint>
<web-resource-collection>
<web-resource-name>all</web-resource-name>
<url-pattern>*.jspx</url-pattern>
<url-pattern>*.jsf</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>Admin</role-name>
</auth-constraint>
</security-constraint>
<login-config>
<auth-method>FORM</auth-method>
<realm-name>admin-realm</realm-name>
<form-login-config>
<form-login-page>/pages/security/login.jsf</form-login-page>
<form-error-page>
/pages/security/loginError.jsf
</form-error-page>

</form-login-config>
</login-config>

I would like to have this jsf application working with JAAS.

Does anybody have any idea or clue ?

thanks in advanced

This forum is deprecated, could you please post your question in the RichFaces User forum?

Thanks,
Jay