java - Declarative-form based authentication - validating username and password -
using form based authentication , authorization in jee
webapps. in web.xml specify security constraints, declare security roles , login configuration (<form-login-page>,<form-error-page>
). so, when user tries access secured jsp or servlet, user being redirected login page, if entered credentials invalid, user redirected error.jsp
(declared under <login-config><form-error-page>
tags).
this way can notify user login details invalid, can't specify wrong password entered or entered unknown username. can leave message "wrong username and/or password!"
is there way implement validation of username , password, form based security approach, display appropriate error message? (for example, if user have entered existing username password doesn't match. or if entered username doesn't exist).
Comments
Post a Comment