I am tasked with fixing some code that was ported from websphere to glassfish. The issue is obvious - the code is "redirecting" from their login action to j_security_check which causes negative side effects (user passwords being logged in access log for one). The websphere code was similar though it forwarded to j_security_check so no negative side effects.
When I change the code to forward instead of redirecting the user is not sent to the proper welcome page however. They are not sent anywhere. I think this is why soemone changed this to a redirect - redirecting does casue the proper welcome page to be used for the user.
Is this a glassfish bug?
[Message sent by forum member 'cdaoust' ]
http://forums.java.net/jive/thread.jspa?messageID=373203