I have the following requirements: - use container security JAAS. - my users need to logon from a non-protected page. - depending on the situation (first logon, password expired ...) I need to redirect the user to a "password update" page.
How can I do that? The default behavior of j_security_check does not satisfy these requirements.