We are currently using J2EE Container managed security within our Struts web application deployed in JBoss 3.0.x/Tomcat. After a user's session timeouts, the user is (correctly) returned to the login page and prompted to re-login. After login, the user is redirected back to the page they where they timed out. We don't want this behaviour. Rather, we would always want the user to start over with the "main landing" page.
Is there a way to implement such functionality?
Right now we are considering swapping out the container managed security and put in our own custom authenication logic, but I want to make sure that we are not missing anything before we proceed.