7 Replies Latest reply on Dec 12, 2002 10:51 AM by simon.nicholls

    getRemoteUser() returns null for some URLs but not others

    Willie Wheeler Newbie

      I'm having some trouble with my JBoss 3.0.3/Tomcat 4.1.12 bundle regarding basic authentication. The web app has two pages, one that's protected by a security constraint and one that's not. When I point the browser to the protected page, the browser makes me login, which is what I want, and HttpServletRequest.getRemoteUser() returns the right user ID. But if I return to the unprotected page, in the same session, getRemoteUser() returns null! Both requests occur in the same servlet context (I checked) and the same HTTP session (I checked). Can anybody think of what might be going on?