0 Replies Latest reply on Dec 3, 2008 3:14 PM by Wolfgang Knauf


    Wolfgang Knauf Master

      Is there any way to use the "unauthenticatedIdentity" feature of "login-config.xml" for secured web applications?

      I have a form based authentication, and even if I enter nothing in "j_username"/"j_password", this empty input seems to be interpreted as zero string login/password, but not as empty login.

      For application clients, the NULL login works fine:

      AppCallbackHandler callbackHandler = new AppCallbackHandler(null, null);
       LoginContext loginContext = new LoginContext ("my_auth_conf", callbackHandler);