The current form based login model is to access a protected page, then a login form cut in to authenticate user, and then redirect to that page. I found this is not flexible enough. There is anyway to instruct Security model which page to go after login in. What does it takes to implement Servlet security model like this? Thanks.