tags:

views:

292

answers:

2
Q: 

Determine target URL within login page using Forms authentication with WebLogic

I have an application running under WebLogic that is using standard forms authentication. The login page is a JSP that presents the login form that will post to j_security_check. So as you would expect, when a user tries to access a page but is not yet authenticated, they will be redirected to the login.jsp.

My question is, how can I determine the page that the user was attempting to hit before WebLogic redirected them to the login page? I wish to use this to change the content of the login page depending on the user's destination. I'm not seeing anything in the request ojbect that would tell me this.

Thanks for any hints!

A: 

It's stored as request attribute with the name javax.servlet.forward.request_uri.

Thus, you can access it by either EL in login JSP:

${requestScope['javax.servlet.forward.request_uri']}

or by raw Java code in either servlet or filter associated with login JSP, or in (cough) scriptlet:

request.getAttribute("javax.servlet.forward.request_uri");
BalusC  2010-02-02 16:58:37
Thanks BalusC, but this attribute does not exist. In fact, request.getAttributeNames() returns an empty list. Perhaps the login page works differently from standard forwarding?
Chris Thornhill  2010-02-02 18:30:23
Maybe weblogic uses an proprietary approach. Or you tested it the wrong way. You shouldn't open up the login page directly. By the way, Weblogic should not have literally **redirected** the request to the login page, but instead just **forwarded** the request to it. A redirect namely creates a brand new request, hereby losing all original attributes.
BalusC  2010-02-02 19:52:21
A: 

We concluded there was no way to find out the target URL from the login page. I woudln't mind being proven wrong. :)

In the meantime, the solution was to deploy the content in second WAR with it's own login page providing the alternate content. Lots of overhead for what should be a simple problem to solve.

Chris Thornhill  2010-03-26 20:24:19

related questions

Java Time Zone is messed up
Eclipse on win64
Automate builds for Java RCP for deployment with JNLP
Why are professors or schools picking Java over C++ to teach to students?
Is there a real benefit of using J#?
Public/Popular Websites using JavaServer Faces
Why can't I use a try block around my super() call?
Accessing post variables using Java Servlets
Personal Linux web server
Is this really widening vs autoboxing?
How can I Java webstart multiple, dependent, native libraries?
Why can't I call toString() on a Java primitive?
How do I use Java to read from a file that is actively being written?
What code analysis tools do you use for your Java projects?
IllegalArgumentException or NullPointerException for a null parameter?
How do I configure and communicate with a serial port?
What is the best way to parse strings in Java
Getting started with a custom JXTA PeerGroup
Creating a custom button in Java
How to get started "writing" a code coverage tool?
Which Build-/Configuration Management Tool?
What is the difference between an int and an Integer in Java/C#?
What is the meaning of the type safety warning in certain Java generics casts?
How would you access Object properties from within an object method?
Converting CSV File to XML in Java