||Using Tomcat 4 Security Realms|
|Subject:||Problem with Login|
We have a problem!!!!!!!!!! If we insert correct psw and username and the role associated have the permission to access the resource, all work fine! If we insert psw or username that aren't on the DataBase all work right and error page is displayed! But if we insert psw and username correct (they are on db) but our role is forbidden to access the resource we are redirect on page with the error message 403 resource forbidden!!!! Our problem is :
In the thirty case our error page is not displayed and we obtain a Principal for the correct user and password then we remain logged in without possibility to logout!!!!! Some ideas to resolve our problem????