You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by vpapado <vp...@yahoo.gr> on 2009/12/21 22:50:22 UTC
j_security_check not working with flash
Hello,
I have a problem authenticating my users with j_security_check interworking
with a flash on my login.jsp page.
Here is how things go:
I use j_security_check method to authenticate my users.
As a result, I have assigned a login.jsp page where I have a login form and
at the top of the page a menu developed with flash:
..::1 - Login Form::..
<form method='POST' action='j_security_check'>
Username:<input type='text' name='j_username'><br>
Password:<input type='password' name='j_password'><br>
<input type='submit' value='Log In'>
</form>
..::2 - Menu Flash::..
When the user is prompt to login, then inserts the correct username -
password.
But after submit, the authentication method fails and the error page appears
from Tomcat:
HTTP Status 404 - /...../j_security_check
type Status report
message /...../j_security_check
description The requested resource (/...../j_security_check) is not
available.
Then I simply remove my flash menu and the whole login procedure of the user
is performed correctly!!!!!!
This means that flash caused the error in this page!!!!!!
Is there a way I can have in my login.jsp page my flash menu and perform the
login successfully?
Thanks in Advance for the answer,
papado.
--
View this message in context: http://old.nabble.com/j_security_check-not-working-with-flash-tp26880231p26880231.html
Sent from the Tomcat - User mailing list archive at Nabble.com.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
Re: j_security_check not working with flash
Posted by Christopher Schultz <ch...@christopherschultz.net>.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Papado,
On 12/21/2009 5:23 PM, vpapado wrote:
> Thank you for fast reply.
> I try everything. Open in different browser, etc.
> But the whole login procedure seems to result to error from Tomcat when I
> have my flash on the login.jsp page.
> When I remove this flash everything seems to work OK.
> Is there a possibility that j_security_check type of authentication
> conflicts with flash swf file? Who knows...
>
> I know about the problem with re-authentication and I solved it in a way
> that whenever a user goes to login.jsp page again (this means that there is
> already a user loged in the current secured file system), then I
> simultaneously log out the user with "session.invalidate();" and redirect
> him to the same page where the user pressed "log-in button". This will cause
> to automatic redirection to login.jsp page, since tomcat recognises that
> there is no user loged-in at that moment. This causes successful
> re-authentication.
This seems to indicate that you were trying a "drive-by login" meaning
that no request was previously made to a protected resource. The servlet
specification is (strangely) very specific about calls to
j_security_check for authentication: a request /must/ be made to a
protected resource for the login page to be served to the user, and then
authentication can proceed.
Tomcat implements this specified behavior by returning a 404 for
unexpected requests to j_security_check. Your hack works because it
forces a request to a protected resource.
- -chris
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iEYEARECAAYFAksyPq0ACgkQ9CaO5/Lv0PDP+wCeJA9rKgTntPTHS0YJpARWvbmI
tkYAoJlEvX2igdHQS0lfUy07DzgGDAOj
=cuOb
-----END PGP SIGNATURE-----
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
Re: j_security_check not working with flash
Posted by vpapado <vp...@yahoo.gr>.
Hello,
Thank you for fast reply.
I try everything. Open in different browser, etc.
But the whole login procedure seems to result to error from Tomcat when I
have my flash on the login.jsp page.
When I remove this flash everything seems to work OK.
Is there a possibility that j_security_check type of authentication
conflicts with flash swf file? Who knows...
I know about the problem with re-authentication and I solved it in a way
that whenever a user goes to login.jsp page again (this means that there is
already a user loged in the current secured file system), then I
simultaneously log out the user with "session.invalidate();" and redirect
him to the same page where the user pressed "log-in button". This will cause
to automatic redirection to login.jsp page, since tomcat recognises that
there is no user loged-in at that moment. This causes successful
re-authentication.
Thank you again for the fast answer.
papado.
anthonyvierra wrote:
>
> Try resetting your browser, meaning fully close it, or try from a
> different browser. Same result? I sometimes get the exact same
> "(/...../j_security_check) is not available." when i have had my
> browser open on the doc for while and re-authenticate. Same thing
> happens on my cisco call manager when i let the login go stale a few
> times without closing the browser. Maybe that will help you
> troubleshoot it further.
>
> On Mon, Dec 21, 2009 at 1:50 PM, vpapado <vp...@yahoo.gr>
> wrote:
>>
>> Hello,
>>
>> I have a problem authenticating my users with j_security_check
>> interworking
>> with a flash on my login.jsp page.
>>
>> Here is how things go:
>>
>> I use j_security_check method to authenticate my users.
>> As a result, I have assigned a login.jsp page where I have a login form
>> and
>> at the top of the page a menu developed with flash:
>>
>> ..::1 - Login Form::..
>> <form method='POST' action='j_security_check'>
>> Username:<input type='text' name='j_username'><br>
>> Password:<input type='password' name='j_password'><br>
>> <input type='submit' value='Log In'>
>> </form>
>>
>> ..::2 - Menu Flash::..
>>
>>
>>
>> When the user is prompt to login, then inserts the correct username -
>> password.
>> But after submit, the authentication method fails and the error page
>> appears
>> from Tomcat:
>>
>> HTTP Status 404 - /...../j_security_check
>> type Status report
>> message /...../j_security_check
>> description The requested resource (/...../j_security_check) is not
>> available.
>>
>>
>> Then I simply remove my flash menu and the whole login procedure of the
>> user
>> is performed correctly!!!!!!
>> This means that flash caused the error in this page!!!!!!
>>
>> Is there a way I can have in my login.jsp page my flash menu and perform
>> the
>> login successfully?
>>
>> Thanks in Advance for the answer,
>> papado.
>> --
>> View this message in context:
>> http://old.nabble.com/j_security_check-not-working-with-flash-tp26880231p26880231.html
>> Sent from the Tomcat - User mailing list archive at Nabble.com.
>>
>>
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
>> For additional commands, e-mail: users-help@tomcat.apache.org
>>
>>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org
>
>
>
--
View this message in context: http://old.nabble.com/j_security_check-not-working-with-flash-tp26880231p26880891.html
Sent from the Tomcat - User mailing list archive at Nabble.com.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
Re: j_security_check not working with flash
Posted by an...@gmail.com.
Try resetting your browser, meaning fully close it, or try from a
different browser. Same result? I sometimes get the exact same
"(/...../j_security_check) is not available." when i have had my
browser open on the doc for while and re-authenticate. Same thing
happens on my cisco call manager when i let the login go stale a few
times without closing the browser. Maybe that will help you
troubleshoot it further.
On Mon, Dec 21, 2009 at 1:50 PM, vpapado <vp...@yahoo.gr> wrote:
>
> Hello,
>
> I have a problem authenticating my users with j_security_check interworking
> with a flash on my login.jsp page.
>
> Here is how things go:
>
> I use j_security_check method to authenticate my users.
> As a result, I have assigned a login.jsp page where I have a login form and
> at the top of the page a menu developed with flash:
>
> ..::1 - Login Form::..
> <form method='POST' action='j_security_check'>
> Username:<input type='text' name='j_username'><br>
> Password:<input type='password' name='j_password'><br>
> <input type='submit' value='Log In'>
> </form>
>
> ..::2 - Menu Flash::..
>
>
>
> When the user is prompt to login, then inserts the correct username -
> password.
> But after submit, the authentication method fails and the error page appears
> from Tomcat:
>
> HTTP Status 404 - /...../j_security_check
> type Status report
> message /...../j_security_check
> description The requested resource (/...../j_security_check) is not
> available.
>
>
> Then I simply remove my flash menu and the whole login procedure of the user
> is performed correctly!!!!!!
> This means that flash caused the error in this page!!!!!!
>
> Is there a way I can have in my login.jsp page my flash menu and perform the
> login successfully?
>
> Thanks in Advance for the answer,
> papado.
> --
> View this message in context: http://old.nabble.com/j_security_check-not-working-with-flash-tp26880231p26880231.html
> Sent from the Tomcat - User mailing list archive at Nabble.com.
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org
>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
Re: j_security_check not working with flash
Posted by vpapado <vp...@yahoo.gr>.
Hello,
Indeed that was it!
I moved the flash into another folder that is not protected, and now it
works.
Thanks you!
Bye
vpapado wrote:
>
> Hello,
>
> I have a problem authenticating my users with j_security_check
> interworking with a flash on my login.jsp page.
>
> Here is how things go:
>
> I use j_security_check method to authenticate my users.
> As a result, I have assigned a login.jsp page where I have a login form
> and at the top of the page a menu developed with flash:
>
> ..::1 - Login Form::..
> <form method='POST' action='j_security_check'>
> Username:<input type='text' name='j_username'><br>
> Password:<input type='password' name='j_password'><br>
> <input type='submit' value='Log In'>
> </form>
>
> ..::2 - Menu Flash::..
>
>
>
> When the user is prompt to login, then inserts the correct username -
> password.
> But after submit, the authentication method fails and the error page
> appears from Tomcat:
>
> HTTP Status 404 - /...../j_security_check
> type Status report
> message /...../j_security_check
> description The requested resource (/...../j_security_check) is not
> available.
>
>
> Then I simply remove my flash menu and the whole login procedure of the
> user is performed correctly!!!!!!
> This means that flash caused the error in this page!!!!!!
>
> Is there a way I can have in my login.jsp page my flash menu and perform
> the login successfully?
>
> Thanks in Advance for the answer,
> papado.
>
--
View this message in context: http://old.nabble.com/j_security_check-not-working-with-flash-tp26880231p26891867.html
Sent from the Tomcat - User mailing list archive at Nabble.com.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
Re: j_security_check not working with flash
Posted by Pid <pi...@pidster.com>.
On 21/12/2009 21:50, vpapado wrote:
>
> Hello,
>
> I have a problem authenticating my users with j_security_check interworking
> with a flash on my login.jsp page.
>
> Here is how things go:
>
> I use j_security_check method to authenticate my users.
> As a result, I have assigned a login.jsp page where I have a login form and
> at the top of the page a menu developed with flash:
>
> ..::1 - Login Form::..
> <form method='POST' action='j_security_check'>
> Username:<input type='text' name='j_username'><br>
> Password:<input type='password' name='j_password'><br>
> <input type='submit' value='Log In'>
> </form>
>
> ..::2 - Menu Flash::..
>
>
>
> When the user is prompt to login, then inserts the correct username -
> password.
> But after submit, the authentication method fails and the error page appears
> from Tomcat:
>
> HTTP Status 404 - /...../j_security_check
> type Status report
> message /...../j_security_check
> description The requested resource (/...../j_security_check) is not
> available.
>
>
> Then I simply remove my flash menu and the whole login procedure of the user
> is performed correctly!!!!!!
> This means that flash caused the error in this page!!!!!!
>
> Is there a way I can have in my login.jsp page my flash menu and perform the
> login successfully?
At a guess: don't put the Flash movie in a protected directory.
p
> Thanks in Advance for the answer,
> papado.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org