We have a webapplication that is authenticating user by BASIC-authentication. Authentication is done by a 3rd party ( clearthrust ). Before the request arrives to jboss the requestheader has been complemened with a entry containing the userid, this is done by the 3rd party. After that the request is redirected to jboss. In jboss i want to modify the request-header by putting the "authenticate basic uid:pwd"-string in the requestheader, before i get the "basic realm" popup-dialog. The pwd is the same as the uid.
I tried to use a filter, but it gets triggered after the realm popup-dialog.