2 Replies Latest reply on Feb 23, 2006 12:33 PM by Jeff

    j_security_check authentication - uppercase user name = prob

    Jeff Newbie


      If I login to my system with a uppercase user name, then I get
      the following message.

      The user is valid, its just in uppercase.


      HTTP Status 403 - Access to the requested resource has been denied.
      
      type Status report
      
      message Access to the requested resource has been denied
      
      description Access to the specified resource (Access to the requested resource has been denied) has been forbidden.
      Apache Tomcat/5.5
      


      Anyone any ideas on how I can solve this?


        • 1. Re: j_security_check authentication - uppercase user name =
          Scott Stark Master

          This says the user is valid but does not have permission to access the resource.

          • 2. Re: j_security_check authentication - uppercase user name =
            Jeff Newbie

            Hey Scott,

            Thanks for the reply!

            I've just solved this myself. :-D
            Now a happy bunny.

            Solved by...


            Adding a merge file for the WAR.

            File: error-pages.xml
            Contents: ...
            <error-page >
            <error-code >403</error-code >
            <location >/jsp/invalidlogin.jsp</location >
            </error-page>


            Then created a file called "invalidlogin.jsp"

            Filename: invalidlogin.jsp
            Contents:
            <%session.invalidate();%>
            <html><META HTTP-EQUIV=Refresh CONTENT="0;URL=taskList.jsf"/></html>


            taskList.jsf is the where index.html redirects to.

            So that if you are authenticated, but not authorized (i.e. putting username in capitals), then you get a 403.

            The above changes now redirect you back to the login page.