Stack Overflow
Stack Overflow

Questions tagged [j-security-check]

j_security_check is a default URL in web applications using JAAS, the Java Authentication and Authorization Service, and Spring Security. It is used to implement security.

j_seucrity_check is the action that needs to be set on a html form when using Java Servlet Form Authentication (container security).

See the Java Tutorial for more information.

163 questions
1
vote
1 answer

PrimeFaces Mobile 5.2 and form-based JAAS login not working together

I have a JSF 2.2 application with PrimeFaces 5.2 and form-based login in combination with a JBoss security realm using Wildfly 8.2 and PostgreSQL. This is working fine and absolutely as expected. The problem now is using the above setup with…
devrys
  • 1,571
  • 3
  • 27
  • 43
1
vote
1 answer

Unwanted redirect to http://localhost:8080/login/j_security_check after logging in

When I log in, I am redirected to http://localhost:8080/login/j_security_check instead of the desired welcome page which is specified in the web.xml. This only happens if I log out before, if I log in from scratch it works like a charm. Login…
olkoza
  • 715
  • 2
  • 17
  • 35
1
vote
2 answers

Java config /j_spring_security_check not found

I'm a noob to Spring framework. Trying to configure security options for the app. I have following as my (xml-less) security config: @Configuration @EnableWebSecurity public class SecurityConfig extends WebSecurityConfigurerAdapter…
Kunal Patel
  • 95
  • 1
  • 12
1
vote
1 answer

JDBC Realm Authentication HTTP Status 403 when using correct credentials (Goes to error page with bad credentials)

I'm trying to get authentication for my site using JDBC Realms and I'm getting a HTTP Status 403 - Access to the requested resource has been denied when I use correct credentials. When I use incorrect credentials it goes to the error page like it…
Matt Nicol
  • 13
  • 3
1
vote
2 answers

Ask user to change their password after their password expires, but not during their session

Currently, the logic for my application is that, when the user's password expires after for example, 30 days, a user will be redirected to the Change Password screen even if they were in the middle of doing something. This is wrong. The user should…
Johnathan Au
  • 5,244
  • 18
  • 70
  • 128
1
vote
1 answer

UTF-8 encoded j_security_check username incorrectly decoded as Latin-1 in Tomcat realm

I'm investigating an issue where a username with Latin-1 character is introduced in a login form. The username contains character á. I investigate the server part where I have: public class MyRealm extends RealmBase implements Realm { public…
wildfrontier
  • 25
  • 1
  • 6
1
vote
1 answer

Form Based Authentication

I have experience programming Java Applications but never any Web Apps so xml is relatively new to me. I've learned quite a bit in my research but I'm currently stumped and hopefully you all can help me out. Context: The company I work for hired a…
CJ Hernandez
  • 15
  • 7
1
vote
1 answer

Stop Tomcat to save user credentials

Im developing a Simple web Application with Apache Tomcat and Java EE. Im using my own JDBC Domain realm to secure and authenticate the users and I'm using a Basic authentication method with j_security_check. I've implemented a logout Servlet and…
chntgomez
  • 2,058
  • 3
  • 19
  • 31
1
vote
2 answers

HttpServletRequest#login() not working in Java

j_security_check just doesn't seem enough for me to perform login process. So, instead of submitting the form to j_security_check i created my own servlet and in that i am programmatically trying to do login. This works but i am not able to redirect…
TCM
  • 16,780
  • 43
  • 156
  • 254
1
vote
1 answer

j_security_check not found worklight

I am trying to authenticate my application users with a LDAP module with Worklight. This is working very well with this client code : var ldapRealmChallengeHandler = WL.Client.createChallengeHandler("LDAPRealm"); function wlCommonInit(){ …
cmartet
  • 21
  • 4
1
vote
1 answer

how to configure Weblogic to prevent j_password plain text content in log file?

Is there a way to configure Weblogic to prevent j_password (JAAS) plain text content in log file? I got the j_password in several files…
Packito
  • 138
  • 12
1
vote
1 answer

User Authentication and Authorization with grizzly websockets

I have gone through many tutorials on user authentication and authorization, most of them uses form based authentication(j_security_check) and @RolesAllowed for authorization and jdbcRealm. So, if the authorization has to work I have to send an…
Mumzee
  • 719
  • 1
  • 11
  • 25
1
vote
0 answers

Null Value for Logged in user using Session Phase Listener and Login Filter j_security_check

I am using JSF2 and Websphere 8. I have a login filter that authenticates the user using j_securitycheck. After successful authentication it puts the logged in user in a session. After this step, Session Management Phase Listener gets executed…
user3258436
  • 11
  • 3
1
vote
0 answers

Using SSL with j_security_check on oracle application server

I need to secure my application on Oracle application server 10g. SSL is enabled and we have a certificate deployed on that server. the web.xml states the following
user3197424
  • 11
  • 2
1
vote
1 answer

Spring Security authenticationSuccessHandler and j_security_check

I am having an issue that is very strange to me so maybe someone can help. Inside my security.xml I have this:
Dustin
  • 39
  • 1
  • 5
1 2 3
10 11