Announcement Announcement Module
Collapse
No announcement yet.
Problem with stylesheet in acegilogin.jsp page Page Title Module
Move Remove Collapse
This topic is closed
X
X
Conversation Detail Module
Collapse
  • Filter
  • Time
  • Show
Clear All
new posts

  • Problem with stylesheet in acegilogin.jsp page

    As soon as I insert a stylesheet in the header of my acegilogin.jsp page and attempt to login, the application downloads and shows the stylesheet file.

    Following the used code snipped:

    <html>
    <head>
    <title><spring:message code="window.title"/></title>
    <link rel="stylesheet" href="<c:url value='style/default.css'/>" type="text/css" />
    </head>
    <body>
    ...

    Has someone the same problem?

  • #2
    Could you describe what is happening a little more, and maybe show the HTML generated by the JSP?

    Comment


    • #3
      All I do is to insert a stylesheet link in the original acegilogin.jsp page as I described above. Without this I can login without any trouble and the application act well. I tried this also with the acegi-security-sample-contacts-filter example application with the same result. After I submit the login page with the correct username and password the application redirects me to the default.css stylesheet page, which is shown in the brwoser. There is only the css code and no HTML code shown...

      Comment


      • #4
        Sounds like the style sheet is being protected. Have you made the path to the CSS ROLE_ANONYMOUS in your FilterSecurityInterceptor.objectDefinitionSource?

        Comment


        • #5
          I'm having same behaviour with 0.9 snapshot build.

          FilterSecurityInterceptor looks something like
          Code:
           CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
                  PATTERN_TYPE_APACHE_ANT
                  /admin/**=ROLE_ADMIN,ROLE_SUPERVISOR
                  /index.jsp=ROLE_ANONYMOUS,ROLE_EMPLOYER,ROLE_ADMIN,ROLE_SUPERVISOR
                  /login.do*=ROLE_ANONYMOUS,ROLE_EMPLOYER,ROLE_ADMIN,ROLE_SUPERVISOR
                  /css/**=ROLE_ANONYMOUS,ROLE_EMPLOYER,ROLE_ADMIN,ROLE_SUPERVISOR
                  /img/**=ROLE_ANONYMOUS,ROLE_EMPLOYER,ROLE_ADMIN,ROLE_SUPERVISOR
                  /default.do*=ROLE_ANONYMOUS,ROLE_EMPLOYER,ROLE_ADMIN,ROLE_SUPERVISOR
          		/**=ROLE_EMPLOYER,ROLE_ADMIN,ROLE_SUPERVISOR

          Debug shows
          Code:
          DEBUG SecurityEnforcementFilter&#58;185 - Chain processed normally
          DEBUG HttpSessionContextIntegrationFilter&#58;270 - SecurityContext stored to HttpSession&#58; 'net.sf.acegisecurity.context.SecurityContextImpl@1f0a2a0&#58; Null authentication'
          DEBUG HttpSessionContextIntegrationFilter&#58;279 - SecurityContextHolder set to new context, as request processing completed
          DEBUG TransactionSynchronizationManager&#58;184 - Removed value &#91;org.springframework.orm.hibernate3.SessionHolder@45f4ae&#93; for key &#91;org.hibernate.impl.SessionFactoryImpl@1154718&#93; from thread &#91;http-8080-Processor24&#93;
          DEBUG TransactionSynchronizationManager&#58;161 - Bound value &#91;org.springframework.orm.hibernate3.SessionHolder@754384&#93; for key &#91;org.hibernate.impl.SessionFactoryImpl@1154718&#93; to thread &#91;http-8080-Processor25&#93;
          DEBUG PathBasedFilterInvocationDefinitionMap&#58;110 - Converted URL to lowercase, from&#58; '/login.do'; to&#58; '/login.do'
          DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/login.do'; pattern is /**; matched=true
          DEBUG FilterChainProxy&#58;297 - /login.do at position 1 of 5 in additional filter chain; firing Filter&#58; '[email protected]cdc97b'
          DEBUG HttpSessionContextIntegrationFilter&#58;176 - Obtained from ACEGI_SECURITY_CONTEXT a valid SecurityContext and set to SecurityContextHolder&#58; 'net.sf.acegisecurity.context.SecurityContextImpl@1f0a2a0&#58; Null authentication'
          DEBUG FilterChainProxy&#58;297 - /login.do at position 2 of 5 in additional filter chain; firing Filter&#58; '[email protected]9d1'
          DEBUG FilterChainProxy&#58;297 - /login.do at position 3 of 5 in additional filter chain; firing Filter&#58; '[email protected]8d'
          DEBUG FilterChainProxy&#58;297 - /login.do at position 4 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.providers.anonymous.AnonymousProcessingFilter@fe8c4'
          DEBUG AnonymousProcessingFilter&#58;95 - Replaced SecurityContextHolder with anonymous token&#58; 'net.sf.acegisecurity.providers.anonymous.AnonymousAuthenticationToken@a3c5b6&#58; Username&#58; anonymousUser; Password&#58; &#91;PROTECTED&#93;; Authenticated&#58; true; Details&#58; null; Granted Authorities&#58; ROLE_ANONYMOUS'
          DEBUG FilterChainProxy&#58;297 - /login.do at position 5 of 5 in additional filter chain; firing Filter&#58; '[email protected]06'
          DEBUG PathBasedFilterInvocationDefinitionMap&#58;110 - Converted URL to lowercase, from&#58; '/login.do'; to&#58; '/login.do'
          DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/login.do'; pattern is /admin/**; matched=false
          DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/login.do'; pattern is /index.jsp; matched=false
          DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/login.do'; pattern is /login.do*; matched=true
          DEBUG AbstractSecurityInterceptor&#58;372 - Secure object&#58; FilterInvocation&#58; URL&#58; /login.do; ConfigAttributes&#58; &#91;ROLE_ANONYMOUS, ROLE_EMPLOYER, ROLE_ADMIN, ROLE_SUPERVISOR&#93;
          DEBUG AbstractSecurityInterceptor&#58;415 - Previously Authenticated&#58; net.sf.acegisecurity.providers.anonymous.AnonymousAuthenticationToken@a3c5b6&#58; Username&#58; anonymousUser; Password&#58; &#91;PROTECTED&#93;; Authenticated&#58; true; Details&#58; null; Granted Authorities&#58; ROLE_ANONYMOUS
          DEBUG AbstractSecurityInterceptor&#58;432 - Authorization successful
          DEBUG AbstractSecurityInterceptor&#58;445 - RunAsManager did not change Authentication object
          DEBUG FilterChainProxy&#58;288 - /login.do reached end of additional filter chain; proceeding with original chain
          DEBUG ModuleUtils&#58;167 - Get module name for path /login.do
          DEBUG ModuleUtils&#58;191 - Module name found&#58; default
          DEBUG RequestProcessor&#58;172 - Processing a 'GET' for path '/login'
          DEBUG TilesRequestProcessor&#58;233 - uri=/jsp/layoutBase.jsp doInclude=false
          DEBUG InsertTag&#58;863 - insert page='/jsp/logon.jsp'.
          DEBUG SecurityEnforcementFilter&#58;185 - Chain processed normally
          DEBUG HttpSessionContextIntegrationFilter&#58;270 - SecurityContext stored to HttpSession&#58; 'net.sf.acegisecurity.context.SecurityContextImpl@1f0a2a0&#58; Null authentication'
          DEBUG TransactionSynchronizationManager&#58;161 - Bound value &#91;org.springframework.orm.hibernate3.SessionHolder@94cc7&#93; for key &#91;org.hibernate.impl.SessionFactoryImpl@1154718&#93; to thread &#91;http-8080-Processor24&#93;
          DEBUG PathBasedFilterInvocationDefinitionMap&#58;110 - Converted URL to lowercase, from&#58; '/css/markup.css'; to&#58; '/css/markup.css'
          DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/markup.css'; pattern is /**; matched=true
          DEBUG FilterChainProxy&#58;297 - /css/markup.css at position 1 of 5 in additional filter chain; firing Filter&#58; '[email protected]cdc97b'
          DEBUG HttpSessionContextIntegrationFilter&#58;279 - SecurityContextHolder set to new context, as request processing completed
          DEBUG HttpSessionContextIntegrationFilter&#58;176 - Obtained from ACEGI_SECURITY_CONTEXT a valid SecurityContext and set to SecurityContextHolder&#58; 'net.sf.acegisecurity.context.SecurityContextImpl@1f0a2a0&#58; Null authentication'
          DEBUG TransactionSynchronizationManager&#58;184 - Removed value &#91;org.springframework.orm.hibernate3.SessionHolder@754384&#93; for key &#91;org.hibernate.impl.SessionFactoryImpl@1154718&#93; from thread &#91;http-8080-Processor25&#93;
          DEBUG FilterChainProxy&#58;297 - /css/markup.css at position 2 of 5 in additional filter chain; firing Filter&#58; '[email protected]9d1'
          DEBUG FilterChainProxy&#58;297 - /css/markup.css at position 3 of 5 in additional filter chain; firing Filter&#58; '[email protected]8d'
          DEBUG FilterChainProxy&#58;297 - /css/markup.css at position 4 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.providers.anonymous.AnonymousProcessingFilter@fe8c4'
          DEBUG AnonymousProcessingFilter&#58;95 - Replaced SecurityContextHolder with anonymous token&#58; 'net.sf.acegisecurity.providers.anonymous.AnonymousAuthenticationToken@8fa0f0&#58; Username&#58; anonymousUser; Password&#58; &#91;PROTECTED&#93;; Authenticated&#58; true; Details&#58; null; Granted Authorities&#58; ROLE_ANONYMOUS'
          DEBUG FilterChainProxy&#58;297 - /css/markup.css at position 5 of 5 in additional filter chain; firing Filter&#58; '[email protected]06'
          DEBUG PathBasedFilterInvocationDefinitionMap&#58;110 - Converted URL to lowercase, from&#58; '/css/markup.css'; to&#58; '/css/markup.css'
          DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/markup.css'; pattern is /admin/**; matched=false
          DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/markup.css'; pattern is /index.jsp; matched=false
          DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/markup.css'; pattern is /login.do*; matched=false
          DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/markup.css'; pattern is /css/**; matched=true
          DEBUG AbstractSecurityInterceptor&#58;372 - Secure object&#58; FilterInvocation&#58; URL&#58; /css/markup.css; ConfigAttributes&#58; &#91;ROLE_ANONYMOUS, ROLE_EMPLOYER, ROLE_ADMIN, ROLE_SUPERVISOR&#93;
          DEBUG AbstractSecurityInterceptor&#58;415 - Previously Authenticated&#58; net.sf.acegisecurity.providers.anonymous.AnonymousAuthenticationToken@8fa0f0&#58; Username&#58; anonymousUser; Password&#58; &#91;PROTECTED&#93;; Authenticated&#58; true; Details&#58; null; Granted Authorities&#58; ROLE_ANONYMOUS
          DEBUG AbstractSecurityInterceptor&#58;432 - Authorization successful
          DEBUG AbstractSecurityInterceptor&#58;445 - RunAsManager did not change Authentication object
          DEBUG FilterChainProxy&#58;288 - /css/markup.css reached end of additional filter chain; proceeding with original chain
          (Using Tomcat, Struts with Tiles)

          somehow I get redirected to .css page instead of login.do action after authentication.

          Comment


          • #6
            I need more log unfortunately. Try earlier in the sequence, when the SecurityEnforcementFilter first detects an access denied exception. We need to see what URL it's storing in the HttpSession.

            Also, I noticed the log refers to /css/markup.css whereas your earlier login page JSP referred to style/default.css. If your login page is still using style/default.css, /style/** is not defined in FilterSecurityInterceptor with ROLE_ANONYMOUS, and this may be contributing.

            Comment


            • #7
              Hi Ben,

              you was correct with your hint that the style sheet is protected. After I made the path to the CSS ROLE_ANONYMOUS, my application works fine.
              Thanks for your help.

              Comment


              • #8
                I haven't been able to solve this issue yet, I'll post a partial (huge!) event.log where user gets
                redirected to stylesheet page instead of defined index page.

                Should I post my security configuration and index.jsp aswell?

                [code:1:7e78a0c474]
                10&#58;05&#58;47,804 DEBUG FilterInvocationDefinitionSourceEditor&#58;73 - Detected PATTERN_TYPE_APACHE_ANT directive; using Apache Ant style path expressions
                10&#58;05&#58;47,808 DEBUG FilterInvocationDefinitionSourceEditor&#58;97 - Line 1&#58;
                10&#58;05&#58;47,810 DEBUG FilterInvocationDefinitionSourceEditor&#58;97 - Line 2&#58; CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
                10&#58;05&#58;47,812 DEBUG FilterInvocationDefinitionSourceEditor&#58;106 - Line 2&#58; Instructing mapper to convert URLs to lowercase before comparison
                10&#58;05&#58;47,819 DEBUG FilterInvocationDefinitionSourceEditor&#58;97 - Line 3&#58; PATTERN_TYPE_APACHE_ANT
                10&#58;05&#58;47,820 DEBUG FilterInvocationDefinitionSourceEditor&#58;97 - Line 4&#58; /**=httpSessionContextIntegrationFilter,authenticat ionProcessingFilter,contextHolderAwareRequestFilte r,anonymousProcessingFilter,securityEnforcementFil ter
                10&#58;05&#58;47,850 DEBUG PathBasedFilterInvocationDefinitionMap&#58;99 - Added Ant path&#58; /**; attributes&#58; &#91;httpSessionContextIntegrationFilter, authenticationProcessingFilter, contextHolderAwareRequestFilter, anonymousProcessingFilter, securityEnforcementFilter&#93;
                10&#58;05&#58;47,853 DEBUG FilterInvocationDefinitionSourceEditor&#58;97 - Line 5&#58;
                10&#58;05&#58;47,855 DEBUG FilterInvocationDefinitionSourceEditor&#58;97 - Line 6&#58;
                10&#58;05&#58;48,011 INFO UserMap&#58;88 - Adding user &#91;net.sf.acegisecurity.providers.dao.User@17870 05&#58; Username&#58; super; Password&#58; &#91;PROTECTED&#93;; Enabled&#58; true; AccountNonExpired&#58; true; credentialsNonExpired&#58; true; AccountNonLocked&#58; true; Granted Authorities&#58; ROLE_USER, ROLE_SUPERVISOR&#93;
                10&#58;05&#58;48,014 INFO UserMap&#58;88 - Adding user &#91;net.sf.acegisecurity.providers.dao.User@29483 &#58; Username&#58; admin; Password&#58; &#91;PROTECTED&#93;; Enabled&#58; true; AccountNonExpired&#58; true; credentialsNonExpired&#58; true; AccountNonLocked&#58; true; Granted Authorities&#58; ROLE_USER, ROLE_ADMIN&#93;
                10&#58;05&#58;48,020 INFO UserMap&#58;88 - Adding user &#91;net.sf.acegisecurity.providers.dao.User@b0351 2&#58; Username&#58; employer; Password&#58; &#91;PROTECTED&#93;; Enabled&#58; true; AccountNonExpired&#58; true; credentialsNonExpired&#58; true; AccountNonLocked&#58; true; Granted Authorities&#58; ROLE_USER, ROLE_EMPLOYER&#93;
                10&#58;05&#58;48,026 INFO UserMap&#58;88 - Adding user &#91;net.sf.acegisecurity.providers.dao.User@6c570 c&#58; Username&#58; timmy; Password&#58; &#91;PROTECTED&#93;; Enabled&#58; true; AccountNonExpired&#58; true; credentialsNonExpired&#58; true; AccountNonLocked&#58; true; Granted Authorities&#58; ROLE_WE_DONT_HAVE&#93;
                10&#58;05&#58;48,085 INFO EhCacheManagerFactoryBean&#58;69 - Initializing EHCache CacheManager
                10&#58;05&#58;48,096 INFO EhCacheFactoryBean&#58;186 - Creating new EHCache cache region 'userCache'
                10&#58;05&#58;48,342 DEBUG FilterInvocationDefinitionSourceEditor&#58;73 - Detected PATTERN_TYPE_APACHE_ANT directive; using Apache Ant style path expressions
                10&#58;05&#58;48,345 DEBUG FilterInvocationDefinitionSourceEditor&#58;97 - Line 1&#58;
                10&#58;05&#58;48,353 DEBUG FilterInvocationDefinitionSourceEditor&#58;97 - Line 2&#58; CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
                10&#58;05&#58;48,355 DEBUG FilterInvocationDefinitionSourceEditor&#58;106 - Line 2&#58; Instructing mapper to convert URLs to lowercase before comparison
                10&#58;05&#58;48,356 DEBUG FilterInvocationDefinitionSourceEditor&#58;97 - Line 3&#58; PATTERN_TYPE_APACHE_ANT
                10&#58;05&#58;48,359 DEBUG FilterInvocationDefinitionSourceEditor&#58;97 - Line 4&#58; /admin/**=ROLE_ADMIN,ROLE_SUPERVISOR
                10&#58;05&#58;48,363 DEBUG PathBasedFilterInvocationDefinitionMap&#58;99 - Added Ant path&#58; /admin/**; attributes&#58; &#91;ROLE_ADMIN, ROLE_SUPERVISOR&#93;
                10&#58;05&#58;48,369 DEBUG FilterInvocationDefinitionSourceEditor&#58;97 - Line 5&#58; /index.jsp=ROLE_ANONYMOUS,ROLE_USER
                10&#58;05&#58;48,372 DEBUG PathBasedFilterInvocationDefinitionMap&#58;99 - Added Ant path&#58; /index.jsp; attributes&#58; &#91;ROLE_ANONYMOUS, ROLE_USER&#93;
                10&#58;05&#58;48,375 DEBUG FilterInvocationDefinitionSourceEditor&#58;97 - Line 6&#58; /login.do*=ROLE_ANONYMOUS,ROLE_USER
                10&#58;05&#58;48,376 DEBUG PathBasedFilterInvocationDefinitionMap&#58;99 - Added Ant path&#58; /login.do*; attributes&#58; &#91;ROLE_ANONYMOUS, ROLE_USER&#93;
                10&#58;05&#58;48,384 DEBUG FilterInvocationDefinitionSourceEditor&#58;97 - Line 7&#58; /logout.do*=ROLE_ANONYMOUS,ROLE_USER
                10&#58;05&#58;48,389 DEBUG PathBasedFilterInvocationDefinitionMap&#58;99 - Added Ant path&#58; /logout.do*; attributes&#58; &#91;ROLE_ANONYMOUS, ROLE_USER&#93;
                10&#58;05&#58;48,391 DEBUG FilterInvocationDefinitionSourceEditor&#58;97 - Line 8&#58; /css/**=ROLE_ANONYMOUS,ROLE_USER
                10&#58;05&#58;48,394 DEBUG PathBasedFilterInvocationDefinitionMap&#58;99 - Added Ant path&#58; /css/**; attributes&#58; &#91;ROLE_ANONYMOUS, ROLE_USER&#93;
                10&#58;05&#58;48,396 DEBUG FilterInvocationDefinitionSourceEditor&#58;97 - Line 9&#58; /img/**=ROLE_ANONYMOUS,ROLE_USER
                10&#58;05&#58;48,398 DEBUG PathBasedFilterInvocationDefinitionMap&#58;99 - Added Ant path&#58; /img/**; attributes&#58; &#91;ROLE_ANONYMOUS, ROLE_USER&#93;
                10&#58;05&#58;48,402 DEBUG FilterInvocationDefinitionSourceEditor&#58;97 - Line 10&#58; /default.do*=ROLE_ANONYMOUS,ROLE_USER
                10&#58;05&#58;48,404 DEBUG PathBasedFilterInvocationDefinitionMap&#58;99 - Added Ant path&#58; /default.do*; attributes&#58; &#91;ROLE_ANONYMOUS, ROLE_USER&#93;
                10&#58;05&#58;48,406 DEBUG FilterInvocationDefinitionSourceEditor&#58;97 - Line 11&#58; /**=ROLE_USER
                10&#58;05&#58;48,422 DEBUG PathBasedFilterInvocationDefinitionMap&#58;99 - Added Ant path&#58; /**; attributes&#58; &#91;ROLE_USER&#93;
                10&#58;05&#58;48,424 DEBUG FilterInvocationDefinitionSourceEditor&#58;97 - Line 12&#58;
                10&#58;05&#58;48,435 INFO AbstractSecurityInterceptor&#58;311 - Validated configuration attributes
                10&#58;05&#58;48,622 DEBUG FilterInvocationDefinitionSourceEditor&#58;97 - Line 1&#58;
                10&#58;05&#58;48,625 DEBUG FilterInvocationDefinitionSourceEditor&#58;97 - Line 2&#58; CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
                10&#58;05&#58;48,626 DEBUG FilterInvocationDefinitionSourceEditor&#58;106 - Line 2&#58; Instructing mapper to convert URLs to lowercase before comparison
                10&#58;05&#58;48,628 DEBUG FilterInvocationDefinitionSourceEditor&#58;97 - Line 3&#58; \A/*.do\Z=REQUIRES_SECURE_CHANNEL
                10&#58;05&#58;48,668 DEBUG RegExpBasedFilterInvocationDefinitionMap&#58;114 - Added regular expression&#58; \A/*.do\Z; attributes&#58; &#91;REQUIRES_SECURE_CHANNEL&#93;
                10&#58;05&#58;48,670 DEBUG FilterInvocationDefinitionSourceEditor&#58;97 - Line 4&#58; \A/login.jsp.*\Z=REQUIRES_SECURE_CHANNEL
                10&#58;05&#58;48,674 DEBUG RegExpBasedFilterInvocationDefinitionMap&#58;114 - Added regular expression&#58; \A/login.jsp.*\Z; attributes&#58; &#91;REQUIRES_SECURE_CHANNEL&#93;
                10&#58;05&#58;48,677 DEBUG FilterInvocationDefinitionSourceEditor&#58;97 - Line 5&#58; \A/j_acegi_security_check.*\Z=REQUIRES_SECURE_CHANNEL
                10&#58;05&#58;48,680 DEBUG RegExpBasedFilterInvocationDefinitionMap&#58;114 - Added regular expression&#58; \A/j_acegi_security_check.*\Z; attributes&#58; &#91;REQUIRES_SECURE_CHANNEL&#93;
                10&#58;05&#58;48,682 DEBUG FilterInvocationDefinitionSourceEditor&#58;97 - Line 6&#58; \A.*\Z=REQUIRES_INSECURE_CHANNEL
                10&#58;05&#58;48,687 DEBUG RegExpBasedFilterInvocationDefinitionMap&#58;114 - Added regular expression&#58; \A.*\Z; attributes&#58; &#91;REQUIRES_INSECURE_CHANNEL&#93;
                10&#58;05&#58;48,691 DEBUG FilterInvocationDefinitionSourceEditor&#58;97 - Line 7&#58;
                10&#58;05&#58;48,694 INFO ChannelProcessingFilter&#58;132 - Validated configuration attributes
                10&#58;05&#58;48,946 INFO AbstractSecurityInterceptor&#58;311 - Validated configuration attributes
                10&#58;05&#58;48,956 DEBUG LoginEventBean&#58;43 - Recievent event &#58;org.springframework.web.context.support.XmlWe bApplicationContext&#58; display name &#91;Root WebApplicationContext&#93;; startup date &#91;Wed Oct 12 10&#58;05&#58;35 EEST 2005&#93;; root of context hierarchy; config locations &#91;/WEB-INF/applicationContext.xml,/WEB-INF/andromeda-security.xml&#93;
                10&#58;05&#58;48,960 INFO ContextLoader&#58;161 - Using context class &#91;org.springframework.web.context.support.XmlWe bApplicationContext&#93; for root WebApplicationContext
                10&#58;05&#58;48,962 INFO ContextLoader&#58;171 - Root WebApplicationContext&#58; initialization completed in 13445 ms
                10&#58;05&#58;48,989 INFO OpenSessionInViewFilter&#58;118 - Initializing filter 'hibernateFilter'
                10&#58;05&#58;49,026 INFO OpenSessionInViewFilter&#58;143 - Filter 'hibernateFilter' configured successfully
                10&#58;05&#58;49,153 DEBUG PropertyMessageResources&#58;82 - Initializing, config='org.apache.struts.action.ActionResources', returnNull=true
                10&#58;05&#58;49,252 DEBUG ActionServlet&#58;1130 - Scanning web.xml for controller servlet mapping
                10&#58;05&#58;49,457 DEBUG ActionServlet&#58;450 - Process servletName=action, urlPattern=*.do
                10&#58;05&#58;49,461 DEBUG ActionServlet&#58;450 - Process servletName=jsp, urlPattern=*.jspf
                10&#58;05&#58;49,464 DEBUG ActionServlet&#58;1163 - Mapping for servlet 'action' = '*.do'
                10&#58;05&#58;49,466 DEBUG ActionServlet&#58;655 - Initializing module path '' configuration from '/WEB-INF/struts-config.xml'
                10&#58;05&#58;50,921 DEBUG ActionServlet&#58;906 - Initializing module path '' message resources from 'fi.foo.bar.struts.ApplicationResources'
                10&#58;05&#58;50,923 DEBUG PropertyMessageResources&#58;82 - Initializing, config='fi.foo.bar.struts.ApplicationResources', returnNull=true
                10&#58;05&#58;50,925 DEBUG ActionServlet&#58;786 - Initializing module path '' data sources
                10&#58;05&#58;50,927 DEBUG ActionServlet&#58;837 - Initializing module path '' plug ins
                10&#58;05&#58;50,966 INFO ContextLoaderPlugIn&#58;217 - ContextLoaderPlugIn for Struts ActionServlet 'action, module ''&#58; initialization started
                10&#58;05&#58;50,970 INFO &#91;/andromeda&#93;&#58;636 - Initializing WebApplicationContext for Struts ActionServlet 'action', module ''
                10&#58;05&#58;50,985 INFO XmlBeanDefinitionReader&#58;158 - Loading XML bean definitions from ServletContext resource &#91;/WEB-INF/action-servlet.xml&#93;
                10&#58;05&#58;51,063 DEBUG PropertyMessageResources&#58;82 - Initializing, config='org.apache.struts.actions.LocalStrings', returnNull=true
                10&#58;05&#58;51,292 INFO XmlWebApplicationContext&#58;92 - Bean factory for application context &#91;WebApplicationContext for namespace 'action-servlet'&#93;&#58; org.springframework.beans.factory.support.DefaultL istableBeanFactory defining beans &#91;/logout,/admin/editUser,/listCustomers,/editCustomerCorporation,/editCustomerPerson,/editCustomerExtraInfo,/admin/editUserGroup,/admin/listOffices,/admin/listOccupations,/listBillingDetails,/listOrders,/selectOrderType,/listUserResources,/downloadUserResource&#93;; parent&#58; org.springframework.beans.factory.support.DefaultL istableBeanFactory defining beans &#91;propertyConfigurer,baseDataSource,myDataSourc e1,myDataSource2,dataSource,hibernateProperties,se ssionFactory,transactionManager,billingDetailsDAO, customerDAO,domainObjectDAO,occupationDAO,officeDA O,orderDAO,referralSourceDAO,sessionDAO,sessionGro upDAO,orderTypeDAO,sessionTypeDAO,userAccountDAO,u serGroupDAO,userResourceDAO,baseTransactionProxy,b illingDetailsService,customerService,domainObjectS ervice,userAccountService,userGroupService,orderSe rvice,sessionService,userResourceService,filterCha inProxy,authenticationManager,authenticationDao,pa sswordEncoder,daoAuthenticationProvider,daoAuthent icationProvider2,cacheManager,userCacheBackend,use rCache,loggerListener,loginListener,anonymousProce ssingFilter,anonymousAuthenticationProvider,httpSe ssionContextIntegrationFilter,securityEnforcementF ilter,authenticationProcessingFilter,authenticatio nProcessingFilterEntryPoint,httpRequestAccessDecis ionManager,roleVoter,filterInvocationInterceptor,c ontextHolderAwareRequestFilter,channelProcessingFi lter,channelDecisionManager,secureChannelProcessor ,insecureChannelProcessor,net.sf.acegisecurity.acl .basic.SimpleAclEntry.ADMINISTRATION,net.sf.acegis ecurity.acl.basic.SimpleAclEntry.READ,net.sf.acegi security.acl.basic.SimpleAclEntry.DELETE,aclContac tReadVoter,aclContactDeleteVoter,aclContactAdminVo ter,businessAccessDecisionManager,aclManager,aclDA O,basicAclProvider,afterInvocationManager,afterAcl CollectionRead,afterAclRead,contactManagerSecurity &#93;; root of BeanFactory hierarchy
                10&#58;05&#58;51,302 INFO XmlWebApplicationContext&#58;295 - 14 beans defined in application context &#91;WebApplicationContext for namespace 'action-servlet'&#93;
                10&#58;05&#58;51,304 INFO XmlWebApplicationContext&#58;437 - Unable to locate MessageSource with name 'messageSource'&#58; using default &#91;org.springframework.context.support.Delegatin gMessageSource@16d4d81&#93;
                10&#58;05&#58;51,321 INFO XmlWebApplicationContext&#58;459 - Unable to locate ApplicationEventMulticaster with name 'applicationEventMulticaster'&#58; using default &#91;org.springframework.context.event.SimpleAppli cationEventMulticaster@fb53f6&#93;
                10&#58;05&#58;51,324 INFO UiApplicationContextUtils&#58;84 - Unable to locate ThemeSource with name 'themeSource'&#58; using default &#91;org.springframework.ui.context.support.Delega tingThemeSource@45484a&#93;
                10&#58;05&#58;51,332 INFO DefaultListableBeanFactory&#58;260 - Pre-instantiating singletons in factory &#91;org.springframework.beans.factory.support.Def aultListableBeanFactory defining beans &#91;/logout,/admin/editUser,/listCustomers,/editCustomerCorporation,/editCustomerPerson,/editCustomerExtraInfo,/admin/editUserGroup,/admin/listOffices,/admin/listOccupations,/listBillingDetails,/listOrders,/selectOrderType,/listUserResources,/downloadUserResource&#93;; parent&#58; org.springframework.beans.factory.support.DefaultL istableBeanFactory defining beans &#91;propertyConfigurer,baseDataSource,myDataSourc e1,myDataSource2,dataSource,hibernateProperties,se ssionFactory,transactionManager,billingDetailsDAO, customerDAO,domainObjectDAO,occupationDAO,officeDA O,orderDAO,referralSourceDAO,sessionDAO,sessionGro upDAO,orderTypeDAO,sessionTypeDAO,userAccountDAO,u serGroupDAO,userResourceDAO,baseTransactionProxy,b illingDetailsService,customerService,domainObjectS ervice,userAccountService,userGroupService,orderSe rvice,sessionService,userResourceService,filterCha inProxy,authenticationManager,authenticationDao,pa sswordEncoder,daoAuthenticationProvider,daoAuthent icationProvider2,cacheManager,userCacheBackend,use rCache,loggerListener,loginListener,anonymousProce ssingFilter,anonymousAuthenticationProvider,httpSe ssionContextIntegrationFilter,securityEnforcementF ilter,authenticationProcessingFilter,authenticatio nProcessingFilterEntryPoint,httpRequestAccessDecis ionManager,roleVoter,filterInvocationInterceptor,c ontextHolderAwareRequestFilter,channelProcessingFi lter,channelDecisionManager,secureChannelProcessor ,insecureChannelProcessor,net.sf.acegisecurity.acl .basic.SimpleAclEntry.ADMINISTRATION,net.sf.acegis ecurity.acl.basic.SimpleAclEntry.READ,net.sf.acegi security.acl.basic.SimpleAclEntry.DELETE,aclContac tReadVoter,aclContactDeleteVoter,aclContactAdminVo ter,businessAccessDecisionManager,aclManager,aclDA O,basicAclProvider,afterInvocationManager,afterAcl CollectionRead,afterAclRead,contactManagerSecurity &#93;; root of BeanFactory hierarchy&#93;
                10&#58;05&#58;51,337 DEBUG LoginEventBean&#58;43 - Recievent event &#58;org.springframework.web.context.support.XmlWe bApplicationContext&#58; display name &#91;WebApplicationContext for namespace 'action-servlet'&#93;; startup date &#91;Wed Oct 12 10&#58;05&#58;50 EEST 2005&#93;; child of &#91;org.springframework.web.context.support.XmlWe bApplicationContext&#58; display name &#91;Root WebApplicationContext&#93;; startup date &#91;Wed Oct 12 10&#58;05&#58;35 EEST 2005&#93;; root of context hierarchy; config locations &#91;/WEB-INF/applicationContext.xml,/WEB-INF/andromeda-security.xml&#93;&#93;; config locations &#91;/WEB-INF/action-servlet.xml&#93;
                10&#58;05&#58;51,341 INFO ContextLoaderPlugIn&#58;297 - Using context class 'org.springframework.web.context.support.XmlWebApp licationContext' for servlet 'action'
                10&#58;05&#58;51,343 INFO ContextLoaderPlugIn&#58;234 - ContextLoaderPlugIn for Struts ActionServlet 'action', module ''&#58; initialization completed in 376 ms
                10&#58;05&#58;51,364 INFO ValidatorPlugIn&#58;211 - Loading validation rules file from '/WEB-INF/validator-rules.xml'
                10&#58;05&#58;51,384 INFO ValidatorPlugIn&#58;211 - Loading validation rules file from '/WEB-INF/validation.xml'
                .
                .
                .
                .
                10&#58;06&#58;23,463 DEBUG TransactionSynchronizationManager&#58;161 - Bound value &#91;org.springframework.orm.hibernate3.SessionHol der@1c27402&#93; for key &#91;org.hibernate.impl.SessionFactoryImpl@14e5d57 &#93; to thread &#91;http-8080-Processor5&#93;
                10&#58;06&#58;23,469 DEBUG PathBasedFilterInvocationDefinitionMap&#58;110 - Converted URL to lowercase, from&#58; '/index.jsp'; to&#58; '/index.jsp'
                10&#58;06&#58;23,470 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/index.jsp'; pattern is /**; matched=true
                10&#58;06&#58;23,485 DEBUG FilterChainProxy&#58;297 - /index.jsp at position 1 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.context.HttpSessionContextIn tegrationFilter@585f2a'
                10&#58;06&#58;23,486 DEBUG HttpSessionContextIntegrationFilter&#58;202 - No HttpSession currently exists - new SecurityContext instance associated with SecurityContextHolder
                10&#58;06&#58;23,490 DEBUG FilterChainProxy&#58;297 - /index.jsp at position 2 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.ui.webapp.AuthenticationProc essingFilter@1833c9c'
                10&#58;06&#58;23,493 DEBUG FilterChainProxy&#58;297 - /index.jsp at position 3 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.wrapper.ContextHolderAwareRe questFilter@71a97'
                10&#58;06&#58;23,503 DEBUG FilterChainProxy&#58;297 - /index.jsp at position 4 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.providers.anonymous.Anonymou sProcessingFilter@11dfe3'
                10&#58;06&#58;23,507 DEBUG AnonymousProcessingFilter&#58;95 - Replaced SecurityContextHolder with anonymous token&#58; 'net.sf.acegisecurity.providers.anonymous.Anonymou sAuthenticationToken@181d405&#58; Username&#58; anonymousUser; Password&#58; &#91;PROTECTED&#93;; Authenticated&#58; true; Details&#58; null; Granted Authorities&#58; ROLE_ANONYMOUS'
                10&#58;06&#58;23,509 DEBUG FilterChainProxy&#58;297 - /index.jsp at position 5 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.intercept.web.SecurityEnforc ementFilter@86b4d5'
                10&#58;06&#58;23,515 DEBUG PathBasedFilterInvocationDefinitionMap&#58;110 - Converted URL to lowercase, from&#58; '/index.jsp'; to&#58; '/index.jsp'
                10&#58;06&#58;23,518 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/index.jsp'; pattern is /admin/**; matched=false
                10&#58;06&#58;23,520 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/index.jsp'; pattern is /index.jsp; matched=true
                10&#58;06&#58;23,521 DEBUG AbstractSecurityInterceptor&#58;372 - Secure object&#58; FilterInvocation&#58; URL&#58; /index.jsp; ConfigAttributes&#58; &#91;ROLE_ANONYMOUS, ROLE_USER&#93;
                10&#58;06&#58;23,523 DEBUG AbstractSecurityInterceptor&#58;415 - Previously Authenticated&#58; net.sf.acegisecurity.providers.anonymous.Anonymous AuthenticationToken@181d405&#58; Username&#58; anonymousUser; Password&#58; &#91;PROTECTED&#93;; Authenticated&#58; true; Details&#58; null; Granted Authorities&#58; ROLE_ANONYMOUS
                10&#58;06&#58;23,524 DEBUG AbstractSecurityInterceptor&#58;432 - Authorization successful
                10&#58;06&#58;23,535 DEBUG LoginEventBean&#58;43 - Recievent event &#58;FilterInvocation&#58; URL&#58; /index.jsp
                10&#58;06&#58;23,536 DEBUG AbstractSecurityInterceptor&#58;445 - RunAsManager did not change Authentication object
                10&#58;06&#58;23,538 DEBUG FilterChainProxy&#58;288 - /index.jsp reached end of additional filter chain; proceeding with original chain
                10&#58;06&#58;23,760 DEBUG PropertyMessageResources&#58;82 - Initializing, config='org.apache.struts.taglib.logic.LocalString s', returnNull=true
                10&#58;06&#58;23,771 DEBUG PropertyMessageResources&#58;82 - Initializing, config='org.apache.struts.taglib.LocalStrings', returnNull=true
                10&#58;06&#58;23,801 DEBUG ModuleUtils&#58;167 - Get module name for path /default.do
                10&#58;06&#58;23,808 DEBUG ModuleUtils&#58;191 - Module name found&#58; default
                10&#58;06&#58;23,821 INFO TilesRequestProcessor&#58;103 - Tiles definition factory found for request processor ''.
                10&#58;06&#58;23,833 DEBUG RequestProcessor&#58;172 - Processing a 'GET' for path '/default'
                10&#58;06&#58;23,840 DEBUG RequestProcessor&#58;618 - Setting user locale 'en_US'
                10&#58;06&#58;23,855 DEBUG I18nFactorySet&#58;512 - Can't open file '/WEB-INF/tiles-defs_en_US.xml'
                10&#58;06&#58;23,860 DEBUG I18nFactorySet&#58;512 - Can't open file '/WEB-INF/tiles-defs_en.xml'
                10&#58;06&#58;23,899 DEBUG TilesRequestProcessor&#58;233 - uri=/jsp/layoutMain.jspf doInclude=false
                10&#58;06&#58;24,092 INFO ExpressionEvaluationUtils&#58;65 - Using JSP 2.0 ExpressionEvaluator
                10&#58;06&#58;24,110 DEBUG PropertyMessageResources&#58;82 - Initializing, config='org.apache.struts.taglib.logic.LocalString s', returnNull=true
                10&#58;06&#58;24,349 DEBUG InsertTag&#58;863 - insert page='/jsp/index.jspf'.
                10&#58;06&#58;24,404 DEBUG InsertTag&#58;863 - insert page='/jsp/layoutBase.jspf'.
                .
                .
                .
                .
                10&#58;06&#58;25,653 DEBUG SecurityEnforcementFilter&#58;185 - Chain processed normally
                10&#58;06&#58;25,670 DEBUG HttpSessionContextIntegrationFilter&#58;270 - SecurityContext stored to HttpSession&#58; 'net.sf.acegisecurity.context.SecurityContextImpl@ 106bde8&#58; Null authentication'
                10&#58;06&#58;25,672 DEBUG HttpSessionContextIntegrationFilter&#58;279 - SecurityContextHolder set to new context, as request processing completed
                10&#58;06&#58;25,674 DEBUG TransactionSynchronizationManager&#58;184 - Removed value &#91;org.springframework.orm.hibernate3.SessionHol der@1c27402&#93; for key &#91;org.hibernate.impl.SessionFactoryImpl@14e5d57 &#93; from thread &#91;http-8080-Processor5&#93;
                10&#58;06&#58;25,816 DEBUG TransactionSynchronizationManager&#58;161 - Bound value &#91;org.springframework.orm.hibernate3.SessionHol der@106870c&#93; for key &#91;org.hibernate.impl.SessionFactoryImpl@14e5d57 &#93; to thread &#91;http-8080-Processor5&#93;
                10&#58;06&#58;25,825 DEBUG PathBasedFilterInvocationDefinitionMap&#58;110 - Converted URL to lowercase, from&#58; '/css/layout.css'; to&#58; '/css/layout.css'
                10&#58;06&#58;25,827 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/layout.css'; pattern is /**; matched=true
                10&#58;06&#58;25,829 DEBUG FilterChainProxy&#58;297 - /css/layout.css at position 1 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.context.HttpSessionContextIn tegrationFilter@585f2a'
                10&#58;06&#58;25,831 DEBUG HttpSessionContextIntegrationFilter&#58;176 - Obtained from ACEGI_SECURITY_CONTEXT a valid SecurityContext and set to SecurityContextHolder&#58; 'net.sf.acegisecurity.context.SecurityContextImpl@ 106bde8&#58; Null authentication'
                10&#58;06&#58;25,833 DEBUG FilterChainProxy&#58;297 - /css/layout.css at position 2 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.ui.webapp.AuthenticationProc essingFilter@1833c9c'
                10&#58;06&#58;25,835 DEBUG FilterChainProxy&#58;297 - /css/layout.css at position 3 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.wrapper.ContextHolderAwareRe questFilter@71a97'
                10&#58;06&#58;25,837 DEBUG FilterChainProxy&#58;297 - /css/layout.css at position 4 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.providers.anonymous.Anonymou sProcessingFilter@11dfe3'
                10&#58;06&#58;25,839 DEBUG AnonymousProcessingFilter&#58;95 - Replaced SecurityContextHolder with anonymous token&#58; 'net.sf.acegisecurity.providers.anonymous.Anonymou sAuthenticationToken@2bbb7b&#58; Username&#58; anonymousUser; Password&#58; &#91;PROTECTED&#93;; Authenticated&#58; true; Details&#58; null; Granted Authorities&#58; ROLE_ANONYMOUS'
                10&#58;06&#58;25,841 DEBUG FilterChainProxy&#58;297 - /css/layout.css at position 5 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.intercept.web.SecurityEnforc ementFilter@86b4d5'
                10&#58;06&#58;25,842 DEBUG PathBasedFilterInvocationDefinitionMap&#58;110 - Converted URL to lowercase, from&#58; '/css/layout.css'; to&#58; '/css/layout.css'
                10&#58;06&#58;25,846 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/layout.css'; pattern is /admin/**; matched=false
                10&#58;06&#58;25,848 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/layout.css'; pattern is /index.jsp; matched=false
                10&#58;06&#58;25,851 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/layout.css'; pattern is /login.do*; matched=false
                10&#58;06&#58;25,853 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/layout.css'; pattern is /logout.do*; matched=false
                10&#58;06&#58;25,854 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/layout.css'; pattern is /css/**; matched=true
                10&#58;06&#58;25,855 DEBUG AbstractSecurityInterceptor&#58;372 - Secure object&#58; FilterInvocation&#58; URL&#58; /css/layout.css; ConfigAttributes&#58; &#91;ROLE_ANONYMOUS, ROLE_USER&#93;
                10&#58;06&#58;25,862 DEBUG AbstractSecurityInterceptor&#58;415 - Previously Authenticated&#58; net.sf.acegisecurity.providers.anonymous.Anonymous AuthenticationToken@2bbb7b&#58; Username&#58; anonymousUser; Password&#58; &#91;PROTECTED&#93;; Authenticated&#58; true; Details&#58; null; Granted Authorities&#58; ROLE_ANONYMOUS
                10&#58;06&#58;25,863 DEBUG AbstractSecurityInterceptor&#58;432 - Authorization successful
                10&#58;06&#58;25,864 DEBUG LoginEventBean&#58;43 - Recievent event &#58;FilterInvocation&#58; URL&#58; /css/layout.css
                10&#58;06&#58;25,866 DEBUG AbstractSecurityInterceptor&#58;445 - RunAsManager did not change Authentication object
                10&#58;06&#58;25,867 DEBUG FilterChainProxy&#58;288 - /css/layout.css reached end of additional filter chain; proceeding with original chain
                10&#58;06&#58;25,844 DEBUG TransactionSynchronizationManager&#58;161 - Bound value &#91;org.springframework.orm.hibernate3.SessionHol der@121c5df&#93; for key &#91;org.hibernate.impl.SessionFactoryImpl@14e5d57 &#93; to thread &#91;http-8080-Processor4&#93;
                10&#58;06&#58;25,884 DEBUG PathBasedFilterInvocationDefinitionMap&#58;110 - Converted URL to lowercase, from&#58; '/css/markup.css'; to&#58; '/css/markup.css'
                10&#58;06&#58;25,886 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/markup.css'; pattern is /**; matched=true
                10&#58;06&#58;25,888 DEBUG FilterChainProxy&#58;297 - /css/markup.css at position 1 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.context.HttpSessionContextIn tegrationFilter@585f2a'
                10&#58;06&#58;25,889 DEBUG HttpSessionContextIntegrationFilter&#58;176 - Obtained from ACEGI_SECURITY_CONTEXT a valid SecurityContext and set to SecurityContextHolder&#58; 'net.sf.acegisecurity.context.SecurityContextImpl@ 106bde8&#58; Authentication&#58; net.sf.acegisecurity.providers.anonymous.Anonymous AuthenticationToken@2bbb7b&#58; Username&#58; anonymousUser; Password&#58; &#91;PROTECTED&#93;; Authenticated&#58; true; Details&#58; null; Granted Authorities&#58; ROLE_ANONYMOUS'
                10&#58;06&#58;25,891 DEBUG FilterChainProxy&#58;297 - /css/markup.css at position 2 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.ui.webapp.AuthenticationProc essingFilter@1833c9c'
                10&#58;06&#58;25,892 DEBUG FilterChainProxy&#58;297 - /css/markup.css at position 3 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.wrapper.ContextHolderAwareRe questFilter@71a97'
                10&#58;06&#58;25,893 DEBUG FilterChainProxy&#58;297 - /css/markup.css at position 4 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.providers.anonymous.Anonymou sProcessingFilter@11dfe3'
                10&#58;06&#58;25,897 DEBUG AnonymousProcessingFilter&#58;102 - SecurityContextHolder not replaced with anonymous token, as ContextHolder already contained&#58; 'net.sf.acegisecurity.providers.anonymous.Anonymou sAuthenticationToken@2bbb7b&#58; Username&#58; anonymousUser; Password&#58; &#91;PROTECTED&#93;; Authenticated&#58; true; Details&#58; null; Granted Authorities&#58; ROLE_ANONYMOUS'
                10&#58;06&#58;25,898 DEBUG FilterChainProxy&#58;297 - /css/markup.css at position 5 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.intercept.web.SecurityEnforc ementFilter@86b4d5'
                10&#58;06&#58;25,936 DEBUG PathBasedFilterInvocationDefinitionMap&#58;110 - Converted URL to lowercase, from&#58; '/css/markup.css'; to&#58; '/css/markup.css'
                10&#58;06&#58;25,938 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/markup.css'; pattern is /admin/**; matched=false
                10&#58;06&#58;25,963 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/markup.css'; pattern is /index.jsp; matched=false
                10&#58;06&#58;25,966 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/markup.css'; pattern is /login.do*; matched=false
                10&#58;06&#58;25,968 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/markup.css'; pattern is /logout.do*; matched=false
                10&#58;06&#58;25,969 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/markup.css'; pattern is /css/**; matched=true
                10&#58;06&#58;25,832 DEBUG TransactionSynchronizationManager&#58;161 - Bound value &#91;org.springframework.orm.hibernate3.SessionHol der@18c2661&#93; for key &#91;org.hibernate.impl.SessionFactoryImpl@14e5d57 &#93; to thread &#91;http-8080-Processor3&#93;
                10&#58;06&#58;26,009 DEBUG PathBasedFilterInvocationDefinitionMap&#58;110 - Converted URL to lowercase, from&#58; '/css/forms.css'; to&#58; '/css/forms.css'
                10&#58;06&#58;26,010 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/forms.css'; pattern is /**; matched=true
                10&#58;06&#58;26,011 DEBUG FilterChainProxy&#58;297 - /css/forms.css at position 1 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.context.HttpSessionContextIn tegrationFilter@585f2a'
                10&#58;06&#58;26,012 DEBUG HttpSessionContextIntegrationFilter&#58;176 - Obtained from ACEGI_SECURITY_CONTEXT a valid SecurityContext and set to SecurityContextHolder&#58; 'net.sf.acegisecurity.context.SecurityContextImpl@ 106bde8&#58; Authentication&#58; net.sf.acegisecurity.providers.anonymous.Anonymous AuthenticationToken@2bbb7b&#58; Username&#58; anonymousUser; Password&#58; &#91;PROTECTED&#93;; Authenticated&#58; true; Details&#58; null; Granted Authorities&#58; ROLE_ANONYMOUS'
                10&#58;06&#58;26,013 DEBUG FilterChainProxy&#58;297 - /css/forms.css at position 2 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.ui.webapp.AuthenticationProc essingFilter@1833c9c'
                10&#58;06&#58;26,014 DEBUG FilterChainProxy&#58;297 - /css/forms.css at position 3 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.wrapper.ContextHolderAwareRe questFilter@71a97'
                10&#58;06&#58;26,015 DEBUG FilterChainProxy&#58;297 - /css/forms.css at position 4 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.providers.anonymous.Anonymou sProcessingFilter@11dfe3'
                10&#58;06&#58;26,016 DEBUG AnonymousProcessingFilter&#58;102 - SecurityContextHolder not replaced with anonymous token, as ContextHolder already contained&#58; 'net.sf.acegisecurity.providers.anonymous.Anonymou sAuthenticationToken@2bbb7b&#58; Username&#58; anonymousUser; Password&#58; &#91;PROTECTED&#93;; Authenticated&#58; true; Details&#58; null; Granted Authorities&#58; ROLE_ANONYMOUS'
                10&#58;06&#58;26,016 DEBUG FilterChainProxy&#58;297 - /css/forms.css at position 5 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.intercept.web.SecurityEnforc ementFilter@86b4d5'
                10&#58;06&#58;26,017 DEBUG PathBasedFilterInvocationDefinitionMap&#58;110 - Converted URL to lowercase, from&#58; '/css/forms.css'; to&#58; '/css/forms.css'
                10&#58;06&#58;26,018 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/forms.css'; pattern is /admin/**; matched=false
                10&#58;06&#58;26,061 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/forms.css'; pattern is /index.jsp; matched=false
                10&#58;06&#58;26,062 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/forms.css'; pattern is /login.do*; matched=false
                10&#58;06&#58;26,064 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/forms.css'; pattern is /logout.do*; matched=false
                10&#58;06&#58;26,065 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/forms.css'; pattern is /css/**; matched=true
                10&#58;06&#58;26,066 DEBUG AbstractSecurityInterceptor&#58;372 - Secure object&#58; FilterInvocation&#58; URL&#58; /css/forms.css; ConfigAttributes&#58; &#91;ROLE_ANONYMOUS, ROLE_USER&#93;
                10&#58;06&#58;26,067 DEBUG AbstractSecurityInterceptor&#58;415 - Previously Authenticated&#58; net.sf.acegisecurity.providers.anonymous.Anonymous AuthenticationToken@2bbb7b&#58; Username&#58; anonymousUser; Password&#58; &#91;PROTECTED&#93;; Authenticated&#58; true; Details&#58; null; Granted Authorities&#58; ROLE_ANONYMOUS
                10&#58;06&#58;26,068 DEBUG AbstractSecurityInterceptor&#58;432 - Authorization successful
                10&#58;06&#58;26,069 DEBUG LoginEventBean&#58;43 - Recievent event &#58;FilterInvocation&#58; URL&#58; /css/forms.css
                10&#58;06&#58;26,069 DEBUG AbstractSecurityInterceptor&#58;445 - RunAsManager did not change Authentication object
                10&#58;06&#58;26,070 DEBUG FilterChainProxy&#58;288 - /css/forms.css reached end of additional filter chain; proceeding with original chain
                10&#58;06&#58;26,074 DEBUG SecurityEnforcementFilter&#58;185 - Chain processed normally
                10&#58;06&#58;26,075 DEBUG HttpSessionContextIntegrationFilter&#58;270 - SecurityContext stored to HttpSession&#58; 'net.sf.acegisecurity.context.SecurityContextImpl@ 106bde8&#58; Authentication&#58; net.sf.acegisecurity.providers.anonymous.Anonymous AuthenticationToken@2bbb7b&#58; Username&#58; anonymousUser; Password&#58; &#91;PROTECTED&#93;; Authenticated&#58; true; Details&#58; null; Granted Authorities&#58; ROLE_ANONYMOUS'
                10&#58;06&#58;26,075 DEBUG HttpSessionContextIntegrationFilter&#58;279 - SecurityContextHolder set to new context, as request processing completed
                10&#58;06&#58;26,076 DEBUG TransactionSynchronizationManager&#58;184 - Removed value &#91;org.springframework.orm.hibernate3.SessionHol der@18c2661&#93; for key &#91;org.hibernate.impl.SessionFactoryImpl@14e5d57 &#93; from thread &#91;http-8080-Processor3&#93;
                10&#58;06&#58;25,904 DEBUG SecurityEnforcementFilter&#58;185 - Chain processed normally
                10&#58;06&#58;26,100 DEBUG HttpSessionContextIntegrationFilter&#58;270 - SecurityContext stored to HttpSession&#58; 'net.sf.acegisecurity.context.SecurityContextImpl@ 106bde8&#58; Null authentication'
                10&#58;06&#58;26,101 DEBUG HttpSessionContextIntegrationFilter&#58;279 - SecurityContextHolder set to new context, as request processing completed
                10&#58;06&#58;26,101 DEBUG TransactionSynchronizationManager&#58;184 - Removed value &#91;org.springframework.orm.hibernate3.SessionHol der@106870c&#93; for key &#91;org.hibernate.impl.SessionFactoryImpl@14e5d57 &#93; from thread &#91;http-8080-Processor5&#93;
                10&#58;06&#58;26,110 DEBUG AbstractSecurityInterceptor&#58;372 - Secure object&#58; FilterInvocation&#58; URL&#58; /css/markup.css; ConfigAttributes&#58; &#91;ROLE_ANONYMOUS, ROLE_USER&#93;
                10&#58;06&#58;26,148 DEBUG LoginEventBean&#58;43 - Recievent event &#58;FilterInvocation&#58; URL&#58; /css/markup.css
                10&#58;06&#58;26,178 DEBUG SecurityEnforcementFilter&#58;189 - Authentication exception occurred; redirecting to authentication entry point
                net.sf.acegisecurity.AuthenticationCredentialsNotF oundException&#58; Authentication credentials were not found in the SecurityContext
                at net.sf.acegisecurity.intercept.AbstractSecurityInt erceptor.credentialsNotFound&#40;AbstractSecurityI nterceptor.java&#58;487&#41;
                at net.sf.acegisecurity.intercept.AbstractSecurityInt erceptor.beforeInvocation&#40;AbstractSecurityInte rceptor.java&#58;379&#41;
                at net.sf.acegisecurity.intercept.web.FilterSecurityI nterceptor.invoke&#40;FilterSecurityInterceptor.ja va&#58;105&#41;
                at net.sf.acegisecurity.intercept.web.SecurityEnforce mentFilter.doFilter&#40;SecurityEnforcementFilter. java&#58;182&#41;
                at net.sf.acegisecurity.util.FilterChainProxy$Virtual FilterChain.doFilter&#40;FilterChainProxy.java&#58 ;303&#41;
                at net.sf.acegisecurity.providers.anonymous.Anonymous ProcessingFilter.doFilter&#40;AnonymousProcessingF ilter.java&#58;111&#41;
                at net.sf.acegisecurity.util.FilterChainProxy$Virtual FilterChain.doFilter&#40;FilterChainProxy.java&#58 ;303&#41;
                at net.sf.acegisecurity.wrapper.ContextHolderAwareReq uestFilter.doFilter&#40;ContextHolderAwareRequestF ilter.java&#58;50&#41;
                at net.sf.acegisecurity.util.FilterChainProxy$Virtual FilterChain.doFilter&#40;FilterChainProxy.java&#58 ;303&#41;
                at net.sf.acegisecurity.ui.AbstractProcessingFilter.d oFilter&#40;AbstractProcessingFilter.java&#58;327& #41;
                at net.sf.acegisecurity.util.FilterChainProxy$Virtual FilterChain.doFilter&#40;FilterChainProxy.java&#58 ;303&#41;
                at net.sf.acegisecurity.context.HttpSessionContextInt egrationFilter.doFilter&#40;HttpSessionContextInte grationFilter.java&#58;216&#41;
                at net.sf.acegisecurity.util.FilterChainProxy$Virtual FilterChain.doFilter&#40;FilterChainProxy.java&#58 ;303&#41;
                at net.sf.acegisecurity.util.FilterChainProxy.doFilte r&#40;FilterChainProxy.java&#58;173&#41;
                at net.sf.acegisecurity.util.FilterToBeanProxy.doFilt er&#40;FilterToBeanProxy.java&#58;120&#41;
                at org.apache.catalina.core.ApplicationFilterChain.in ternalDoFilter&#40;ApplicationFilterChain.java&#58 ;202&#41;
                at org.apache.catalina.core.ApplicationFilterChain.do Filter&#40;ApplicationFilterChain.java&#58;173&#41 ;
                at org.springframework.orm.hibernate3.support.OpenSes sionInViewFilter.doFilterInternal&#40;OpenSessionI nViewFilter.java&#58;174&#41;
                at org.springframework.web.filter.OncePerRequestFilte r.doFilter&#40;OncePerRequestFilter.java&#58;76&#4 1;
                at org.apache.catalina.core.ApplicationFilterChain.in ternalDoFilter&#40;ApplicationFilterChain.java&#58 ;202&#41;
                at org.apache.catalina.core.ApplicationFilterChain.do Filter&#40;ApplicationFilterChain.java&#58;173&#41 ;
                at org.apache.catalina.core.StandardWrapperValve.invo ke&#40;StandardWrapperValve.java&#58;213&#41;
                at org.apache.catalina.core.StandardContextValve.invo ke&#40;StandardContextValve.java&#58;178&#41;
                at org.apache.catalina.core.StandardHostValve.invoke& #40;StandardHostValve.java&#58;126&#41;
                at org.apache.catalina.valves.ErrorReportValve.invoke &#40;ErrorReportValve.java&#58;105&#41;
                at org.apache.catalina.core.StandardEngineValve.invok e&#40;StandardEngineValve.java&#58;107&#41;
                at org.apache.catalina.connector.CoyoteAdapter.servic e&#40;CoyoteAdapter.java&#58;148&#41;
                at org.apache.coyote.http11.Http11Processor.process&# 40;Http11Processor.java&#58;856&#41;
                at org.apache.coyote.http11.Http11Protocol$Http11Conn ectionHandler.processConnection&#40;Http11Protocol .java&#58;744&#41;
                at org.apache.tomcat.util.net.PoolTcpEndpoint.process Socket&#40;PoolTcpEndpoint.java&#58;527&#41;
                at org.apache.tomcat.util.net.LeaderFollowerWorkerThr ead.runIt&#40;LeaderFollowerWorkerThread.java&#58; 80&#41;
                at org.apache.tomcat.util.threads.ThreadPool$ControlR unnable.run&#40;ThreadPool.java&#58;684&#41;
                at java.lang.Thread.run&#40;Thread.java&#58;595&#41;
                10&#58;06&#58;26,201 DEBUG SecurityEnforcementFilter&#58;253 - Authentication entry point being called; target URL added to Session&#58; http&#58;//localhost&#58;8080/andromeda/css/markup.css
                10&#58;06&#58;26,203 DEBUG AuthenticationProcessingFilterEntryPoint&#58;171 - Redirecting to&#58; http&#58;//localhost&#58;8080/andromeda/login.do
                10&#58;06&#58;26,206 DEBUG HttpSessionContextIntegrationFilter&#58;270 - SecurityContext stored to HttpSession&#58; 'net.sf.acegisecurity.context.SecurityContextImpl@ 106bde8&#58; Null authentication'
                10&#58;06&#58;26,208 DEBUG HttpSessionContextIntegrationFilter&#58;279 - SecurityContextHolder set to new context, as request processing completed
                10&#58;06&#58;26,209 DEBUG TransactionSynchronizationManager&#58;184 - Removed value &#91;org.springframework.orm.hibernate3.SessionHol der@121c5df&#93; for key &#91;org.hibernate.impl.SessionFactoryImpl@14e5d57 &#93; from thread &#91;http-8080-Processor4&#93;
                10&#58;06&#58;26,324 DEBUG TransactionSynchronizationManager&#58;161 - Bound value &#91;org.springframework.orm.hibernate3.SessionHol der@f04d94&#93; for key &#91;org.hibernate.impl.SessionFactoryImpl@14e5d57 &#93; to thread &#91;http-8080-Processor3&#93;
                10&#58;06&#58;26,325 DEBUG PathBasedFilterInvocationDefinitionMap&#58;110 - Converted URL to lowercase, from&#58; '/login.do'; to&#58; '/login.do'
                10&#58;06&#58;26,326 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/login.do'; pattern is /**; matched=true
                10&#58;06&#58;26,328 DEBUG FilterChainProxy&#58;297 - /login.do at position 1 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.context.HttpSessionContextIn tegrationFilter@585f2a'
                10&#58;06&#58;26,329 DEBUG HttpSessionContextIntegrationFilter&#58;176 - Obtained from ACEGI_SECURITY_CONTEXT a valid SecurityContext and set to SecurityContextHolder&#58; 'net.sf.acegisecurity.context.SecurityContextImpl@ 106bde8&#58; Null authentication'
                10&#58;06&#58;26,335 DEBUG FilterChainProxy&#58;297 - /login.do at position 2 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.ui.webapp.AuthenticationProc essingFilter@1833c9c'
                10&#58;06&#58;26,343 DEBUG FilterChainProxy&#58;297 - /login.do at position 3 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.wrapper.ContextHolderAwareRe questFilter@71a97'
                10&#58;06&#58;26,346 DEBUG FilterChainProxy&#58;297 - /login.do at position 4 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.providers.anonymous.Anonymou sProcessingFilter@11dfe3'
                10&#58;06&#58;26,347 DEBUG AnonymousProcessingFilter&#58;95 - Replaced SecurityContextHolder with anonymous token&#58; 'net.sf.acegisecurity.providers.anonymous.Anonymou sAuthenticationToken@754384&#58; Username&#58; anonymousUser; Password&#58; &#91;PROTECTED&#93;; Authenticated&#58; true; Details&#58; null; Granted Authorities&#58; ROLE_ANONYMOUS'
                10&#58;06&#58;26,348 DEBUG FilterChainProxy&#58;297 - /login.do at position 5 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.intercept.web.SecurityEnforc ementFilter@86b4d5'
                10&#58;06&#58;26,349 DEBUG PathBasedFilterInvocationDefinitionMap&#58;110 - Converted URL to lowercase, from&#58; '/login.do'; to&#58; '/login.do'
                10&#58;06&#58;26,350 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/login.do'; pattern is /admin/**; matched=false
                10&#58;06&#58;26,351 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/login.do'; pattern is /index.jsp; matched=false
                10&#58;06&#58;26,352 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/login.do'; pattern is /login.do*; matched=true
                10&#58;06&#58;26,353 DEBUG AbstractSecurityInterceptor&#58;372 - Secure object&#58; FilterInvocation&#58; URL&#58; /login.do; ConfigAttributes&#58; &#91;ROLE_ANONYMOUS, ROLE_USER&#93;
                10&#58;06&#58;26,354 DEBUG AbstractSecurityInterceptor&#58;415 - Previously Authenticated&#58; net.sf.acegisecurity.providers.anonymous.Anonymous AuthenticationToken@754384&#58; Username&#58; anonymousUser; Password&#58; &#91;PROTECTED&#93;; Authenticated&#58; true; Details&#58; null; Granted Authorities&#58; ROLE_ANONYMOUS
                10&#58;06&#58;26,357 DEBUG AbstractSecurityInterceptor&#58;432 - Authorization successful
                10&#58;06&#58;26,358 DEBUG LoginEventBean&#58;43 - Recievent event &#58;FilterInvocation&#58; URL&#58; /login.do
                10&#58;06&#58;26,359 DEBUG AbstractSecurityInterceptor&#58;445 - RunAsManager did not change Authentication object
                10&#58;06&#58;26,360 DEBUG FilterChainProxy&#58;288 - /login.do reached end of additional filter chain; proceeding with original chain
                10&#58;06&#58;26,365 DEBUG ModuleUtils&#58;167 - Get module name for path /login.do
                10&#58;06&#58;26,366 DEBUG ModuleUtils&#58;191 - Module name found&#58; default
                10&#58;06&#58;26,368 DEBUG RequestProcessor&#58;172 - Processing a 'GET' for path '/login'
                10&#58;06&#58;26,369 DEBUG TilesRequestProcessor&#58;233 - uri=/jsp/layoutBase.jspf doInclude=false
                10&#58;06&#58;26,372 DEBUG InsertTag&#58;863 - insert page='/jsp/logon.jspf'.
                10&#58;06&#58;26,469 DEBUG PropertyMessageResources&#58;132 - getMessage&#40;en_US,label.username&#41;
                10&#58;06&#58;26,472 DEBUG PropertyMessageResources&#58;224 - loadLocale&#40;en_US&#41;
                10&#58;06&#58;26,477 DEBUG PropertyMessageResources&#58;224 - loadLocale&#40;en&#41;
                10&#58;06&#58;26,487 DEBUG PropertyMessageResources&#58;224 - loadLocale&#40;&#41;
                10&#58;06&#58;26,496 DEBUG PropertyMessageResources&#58;132 - getMessage&#40;en_US,label.password&#41;
                10&#58;06&#58;26,503 DEBUG PropertyMessageResources&#58;224 - loadLocale&#40;en_US&#41;
                10&#58;06&#58;26,505 DEBUG PropertyMessageResources&#58;224 - loadLocale&#40;en&#41;
                10&#58;06&#58;26,507 DEBUG PropertyMessageResources&#58;224 - loadLocale&#40;&#41;
                10&#58;06&#58;26,508 DEBUG PropertyMessageResources&#58;132 - getMessage&#40;en_US,button.logon&#41;
                10&#58;06&#58;26,510 DEBUG PropertyMessageResources&#58;224 - loadLocale&#40;en_US&#41;
                10&#58;06&#58;26,512 DEBUG PropertyMessageResources&#58;224 - loadLocale&#40;en&#41;
                10&#58;06&#58;26,519 DEBUG PropertyMessageResources&#58;224 - loadLocale&#40;&#41;
                10&#58;06&#58;26,521 DEBUG SecurityEnforcementFilter&#58;185 - Chain processed normally
                10&#58;06&#58;26,522 DEBUG HttpSessionContextIntegrationFilter&#58;270 - SecurityContext stored to HttpSession&#58; 'net.sf.acegisecurity.context.SecurityContextImpl@ 106bde8&#58; Null authentication'
                10&#58;06&#58;26,523 DEBUG HttpSessionContextIntegrationFilter&#58;279 - SecurityContextHolder set to new context, as request processing completed
                10&#58;06&#58;26,524 DEBUG TransactionSynchronizationManager&#58;184 - Removed value &#91;org.springframework.orm.hibernate3.SessionHol der@f04d94&#93; for key &#91;org.hibernate.impl.SessionFactoryImpl@14e5d57 &#93; from thread &#91;http-8080-Processor3&#93;
                10&#58;10&#58;39,355 DEBUG TransactionSynchronizationManager&#58;161 - Bound value &#91;org.springframework.orm.hibernate3.SessionHol der@14fcc96&#93; for key &#91;org.hibernate.impl.SessionFactoryImpl@14e5d57 &#93; to thread &#91;http-8080-Processor2&#93;
                10&#58;10&#58;39,356 DEBUG PathBasedFilterInvocationDefinitionMap&#58;110 - Converted URL to lowercase, from&#58; '/index.jsp'; to&#58; '/index.jsp'
                10&#58;10&#58;39,357 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/index.jsp'; pattern is /**; matched=true
                10&#58;10&#58;39,358 DEBUG FilterChainProxy&#58;297 - /index.jsp at position 1 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.context.HttpSessionContextIn tegrationFilter@585f2a'
                10&#58;10&#58;39,359 DEBUG HttpSessionContextIntegrationFilter&#58;176 - Obtained from ACEGI_SECURITY_CONTEXT a valid SecurityContext and set to SecurityContextHolder&#58; 'net.sf.acegisecurity.context.SecurityContextImpl@ 106bde8&#58; Null authentication'
                10&#58;10&#58;39,360 DEBUG FilterChainProxy&#58;297 - /index.jsp at position 2 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.ui.webapp.AuthenticationProc essingFilter@1833c9c'
                10&#58;10&#58;39,361 DEBUG FilterChainProxy&#58;297 - /index.jsp at position 3 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.wrapper.ContextHolderAwareRe questFilter@71a97'
                10&#58;10&#58;39,362 DEBUG FilterChainProxy&#58;297 - /index.jsp at position 4 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.providers.anonymous.Anonymou sProcessingFilter@11dfe3'
                10&#58;10&#58;39,363 DEBUG AnonymousProcessingFilter&#58;95 - Replaced SecurityContextHolder with anonymous token&#58; 'net.sf.acegisecurity.providers.anonymous.Anonymou sAuthenticationToken@bcbc&#58; Username&#58; anonymousUser; Password&#58; &#91;PROTECTED&#93;; Authenticated&#58; true; Details&#58; null; Granted Authorities&#58; ROLE_ANONYMOUS'
                10&#58;10&#58;39,364 DEBUG FilterChainProxy&#58;297 - /index.jsp at position 5 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.intercept.web.SecurityEnforc ementFilter@86b4d5'
                10&#58;10&#58;39,365 DEBUG PathBasedFilterInvocationDefinitionMap&#58;110 - Converted URL to lowercase, from&#58; '/index.jsp'; to&#58; '/index.jsp'
                10&#58;10&#58;39,366 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/index.jsp'; pattern is /admin/**; matched=false
                10&#58;10&#58;39,367 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/index.jsp'; pattern is /index.jsp; matched=true
                10&#58;10&#58;39,368 DEBUG AbstractSecurityInterceptor&#58;372 - Secure object&#58; FilterInvocation&#58; URL&#58; /index.jsp; ConfigAttributes&#58; &#91;ROLE_ANONYMOUS, ROLE_USER&#93;
                10&#58;10&#58;39,374 DEBUG AbstractSecurityInterceptor&#58;415 - Previously Authenticated&#58; net.sf.acegisecurity.providers.anonymous.Anonymous AuthenticationToken@bcbc&#58; Username&#58; anonymousUser; Password&#58; &#91;PROTECTED&#93;; Authenticated&#58; true; Details&#58; null; Granted Authorities&#58; ROLE_ANONYMOUS
                10&#58;10&#58;39,375 DEBUG AbstractSecurityInterceptor&#58;432 - Authorization successful
                10&#58;10&#58;39,391 DEBUG LoginEventBean&#58;43 - Recievent event &#58;FilterInvocation&#58; URL&#58; /index.jsp
                10&#58;10&#58;39,392 DEBUG AbstractSecurityInterceptor&#58;445 - RunAsManager did not change Authentication object
                10&#58;10&#58;39,393 DEBUG FilterChainProxy&#58;288 - /index.jsp reached end of additional filter chain; proceeding with original chain
                10&#58;10&#58;39,395 DEBUG ModuleUtils&#58;167 - Get module name for path /default.do
                10&#58;10&#58;39,396 DEBUG ModuleUtils&#58;191 - Module name found&#58; default
                10&#58;10&#58;39,402 DEBUG RequestProcessor&#58;172 - Processing a 'GET' for path '/default'
                10&#58;10&#58;39,408 DEBUG TilesRequestProcessor&#58;233 - uri=/jsp/layoutMain.jspf doInclude=false
                10&#58;10&#58;39,411 DEBUG InsertTag&#58;863 - insert page='/jsp/index.jspf'.
                10&#58;10&#58;39,419 DEBUG InsertTag&#58;863 - insert page='/jsp/layoutBase.jspf'.
                10&#58;10&#58;45,625 DEBUG SecurityEnforcementFilter&#58;185 - Chain processed normally
                10&#58;10&#58;45,626 DEBUG HttpSessionContextIntegrationFilter&#58;270 - SecurityContext stored to HttpSession&#58; 'net.sf.acegisecurity.context.SecurityContextImpl@ 106bde8&#58; Null authentication'
                10&#58;10&#58;45,627 DEBUG HttpSessionContextIntegrationFilter&#58;279 - SecurityContextHolder set to new context, as request processing completed
                10&#58;10&#58;45,634 DEBUG TransactionSynchronizationManager&#58;184 - Removed value &#91;org.springframework.orm.hibernate3.SessionHol der@14fcc96&#93; for key &#91;org.hibernate.impl.SessionFactoryImpl@14e5d57 &#93; from thread &#91;http-8080-Processor2&#93;
                10&#58;10&#58;45,709 DEBUG TransactionSynchronizationManager&#58;161 - Bound value &#91;org.springframework.orm.hibernate3.SessionHol der@1f88953&#93; for key &#91;org.hibernate.impl.SessionFactoryImpl@14e5d57 &#93; to thread &#91;http-8080-Processor2&#93;
                10&#58;10&#58;45,710 DEBUG PathBasedFilterInvocationDefinitionMap&#58;110 - Converted URL to lowercase, from&#58; '/css/layout.css'; to&#58; '/css/layout.css'
                10&#58;10&#58;45,712 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/layout.css'; pattern is /**; matched=true
                10&#58;10&#58;45,713 DEBUG FilterChainProxy&#58;297 - /css/layout.css at position 1 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.context.HttpSessionContextIn tegrationFilter@585f2a'
                10&#58;10&#58;45,721 DEBUG HttpSessionContextIntegrationFilter&#58;176 - Obtained from ACEGI_SECURITY_CONTEXT a valid SecurityContext and set to SecurityContextHolder&#58; 'net.sf.acegisecurity.context.SecurityContextImpl@ 106bde8&#58; Null authentication'
                10&#58;10&#58;45,734 DEBUG FilterChainProxy&#58;297 - /css/layout.css at position 2 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.ui.webapp.AuthenticationProc essingFilter@1833c9c'
                10&#58;10&#58;45,735 DEBUG FilterChainProxy&#58;297 - /css/layout.css at position 3 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.wrapper.ContextHolderAwareRe questFilter@71a97'
                10&#58;10&#58;45,737 DEBUG FilterChainProxy&#58;297 - /css/layout.css at position 4 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.providers.anonymous.Anonymou sProcessingFilter@11dfe3'
                10&#58;10&#58;45,738 DEBUG AnonymousProcessingFilter&#58;95 - Replaced SecurityContextHolder with anonymous token&#58; 'net.sf.acegisecurity.providers.anonymous.Anonymou sAuthenticationToken@1ffdf86&#58; Username&#58; anonymousUser; Password&#58; &#91;PROTECTED&#93;; Authenticated&#58; true; Details&#58; null; Granted Authorities&#58; ROLE_ANONYMOUS'
                10&#58;10&#58;45,739 DEBUG FilterChainProxy&#58;297 - /css/layout.css at position 5 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.intercept.web.SecurityEnforc ementFilter@86b4d5'
                10&#58;10&#58;45,740 DEBUG PathBasedFilterInvocationDefinitionMap&#58;110 - Converted URL to lowercase, from&#58; '/css/layout.css'; to&#58; '/css/layout.css'
                10&#58;10&#58;45,746 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/layout.css'; pattern is /admin/**; matched=false
                10&#58;10&#58;45,747 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/layout.css'; pattern is /index.jsp; matched=false
                10&#58;10&#58;45,748 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/layout.css'; pattern is /login.do*; matched=false
                10&#58;10&#58;45,749 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/layout.css'; pattern is /logout.do*; matched=false
                10&#58;10&#58;45,750 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/layout.css'; pattern is /css/**; matched=true
                10&#58;10&#58;45,751 DEBUG AbstractSecurityInterceptor&#58;372 - Secure object&#58; FilterInvocation&#58; URL&#58; /css/layout.css; ConfigAttributes&#58; &#91;ROLE_ANONYMOUS, ROLE_USER&#93;
                10&#58;10&#58;45,751 DEBUG AbstractSecurityInterceptor&#58;415 - Previously Authenticated&#58; net.sf.acegisecurity.providers.anonymous.Anonymous AuthenticationToken@1ffdf86&#58; Username&#58; anonymousUser; Password&#58; &#91;PROTECTED&#93;; Authenticated&#58; true; Details&#58; null; Granted Authorities&#58; ROLE_ANONYMOUS
                10&#58;10&#58;45,753 DEBUG AbstractSecurityInterceptor&#58;432 - Authorization successful
                10&#58;10&#58;45,754 DEBUG LoginEventBean&#58;43 - Recievent event &#58;FilterInvocation&#58; URL&#58; /css/layout.css
                10&#58;10&#58;45,755 DEBUG AbstractSecurityInterceptor&#58;445 - RunAsManager did not change Authentication object
                10&#58;10&#58;45,756 DEBUG FilterChainProxy&#58;288 - /css/layout.css reached end of additional filter chain; proceeding with original chain
                10&#58;10&#58;45,757 DEBUG SecurityEnforcementFilter&#58;185 - Chain processed normally
                10&#58;10&#58;45,766 DEBUG HttpSessionContextIntegrationFilter&#58;270 - SecurityContext stored to HttpSession&#58; 'net.sf.acegisecurity.context.SecurityContextImpl@ 106bde8&#58; Null authentication'
                10&#58;10&#58;45,767 DEBUG HttpSessionContextIntegrationFilter&#58;279 - SecurityContextHolder set to new context, as request processing completed
                10&#58;10&#58;45,767 DEBUG TransactionSynchronizationManager&#58;184 - Removed value &#91;org.springframework.orm.hibernate3.SessionHol der@1f88953&#93; for key &#91;org.hibernate.impl.SessionFactoryImpl@14e5d57 &#93; from thread &#91;http-8080-Processor2&#93;
                10&#58;10&#58;45,973 DEBUG TransactionSynchronizationManager&#58;161 - Bound value &#91;org.springframework.orm.hibernate3.SessionHol der@1abdb8a&#93; for key &#91;org.hibernate.impl.SessionFactoryImpl@14e5d57 &#93; to thread &#91;http-8080-Processor2&#93;
                10&#58;10&#58;45,974 DEBUG PathBasedFilterInvocationDefinitionMap&#58;110 - Converted URL to lowercase, from&#58; '/css/forms.css'; to&#58; '/css/forms.css'
                10&#58;10&#58;45,981 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/forms.css'; pattern is /**; matched=true
                10&#58;10&#58;45,982 DEBUG FilterChainProxy&#58;297 - /css/forms.css at position 1 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.context.HttpSessionContextIn tegrationFilter@585f2a'
                10&#58;10&#58;45,982 DEBUG HttpSessionContextIntegrationFilter&#58;176 - Obtained from ACEGI_SECURITY_CONTEXT a valid SecurityContext and set to SecurityContextHolder&#58; 'net.sf.acegisecurity.context.SecurityContextImpl@ 106bde8&#58; Null authentication'
                10&#58;10&#58;45,983 DEBUG FilterChainProxy&#58;297 - /css/forms.css at position 2 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.ui.webapp.AuthenticationProc essingFilter@1833c9c'
                10&#58;10&#58;45,984 DEBUG FilterChainProxy&#58;297 - /css/forms.css at position 3 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.wrapper.ContextHolderAwareRe questFilter@71a97'
                10&#58;10&#58;45,985 DEBUG FilterChainProxy&#58;297 - /css/forms.css at position 4 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.providers.anonymous.Anonymou sProcessingFilter@11dfe3'
                10&#58;10&#58;45,986 DEBUG AnonymousProcessingFilter&#58;95 - Replaced SecurityContextHolder with anonymous token&#58; 'net.sf.acegisecurity.providers.anonymous.Anonymou sAuthenticationToken@1da817b&#58; Username&#58; anonymousUser; Password&#58; &#91;PROTECTED&#93;; Authenticated&#58; true; Details&#58; null; Granted Authorities&#58; ROLE_ANONYMOUS'
                10&#58;10&#58;45,986 DEBUG FilterChainProxy&#58;297 - /css/forms.css at position 5 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.intercept.web.SecurityEnforc ementFilter@86b4d5'
                10&#58;10&#58;45,987 DEBUG PathBasedFilterInvocationDefinitionMap&#58;110 - Converted URL to lowercase, from&#58; '/css/forms.css'; to&#58; '/css/forms.css'
                10&#58;10&#58;45,989 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/forms.css'; pattern is /admin/**; matched=false
                10&#58;10&#58;45,990 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/forms.css'; pattern is /index.jsp; matched=false
                10&#58;10&#58;45,991 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/forms.css'; pattern is /login.do*; matched=false
                10&#58;10&#58;45,992 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/forms.css'; pattern is /logout.do*; matched=false
                10&#58;10&#58;45,993 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/css/forms.css'; pattern is /css/**; matched=true
                10&#58;10&#58;45,994 DEBUG AbstractSecurityInterceptor&#58;372 - Secure object&#58; FilterInvocation&#58; URL&#58; /css/forms.css; ConfigAttributes&#58; &#91;ROLE_ANONYMOUS, ROLE_USER&#93;
                10&#58;10&#58;45,995 DEBUG AbstractSecurityInterceptor&#58;415 - Previously Authenticated&#58; net.sf.acegisecurity.providers.anonymous.Anonymous AuthenticationToken@1da817b&#58; Username&#58; anonymousUser; Password&#58; &#91;PROTECTED&#93;; Authenticated&#58; true; Details&#58; null; Granted Authorities&#58; ROLE_ANONYMOUS
                10&#58;10&#58;45,996 DEBUG AbstractSecurityInterceptor&#58;432 - Authorization successful
                10&#58;10&#58;46,003 DEBUG LoginEventBean&#58;43 - Recievent event &#58;FilterInvocation&#58; URL&#58; /css/forms.css
                10&#58;10&#58;46,004 DEBUG AbstractSecurityInterceptor&#58;445 - RunAsManager did not change Authentication object
                10&#58;10&#58;46,005 DEBUG FilterChainProxy&#58;288 - /css/forms.css reached end of additional filter chain; proceeding with original chain
                10&#58;10&#58;46,031 DEBUG SecurityEnforcementFilter&#58;185 - Chain processed normally
                10&#58;10&#58;46,032 DEBUG HttpSessionContextIntegrationFilter&#58;270 - SecurityContext stored to HttpSession&#58; 'net.sf.acegisecurity.context.SecurityContextImpl@ 106bde8&#58; Null authentication'
                10&#58;10&#58;46,033 DEBUG HttpSessionContextIntegrationFilter&#58;279 - SecurityContextHolder set to new context, as request processing completed
                10&#58;10&#58;46,047 DEBUG TransactionSynchronizationManager&#58;184 - Removed value &#91;org.springframework.orm.hibernate3.SessionHol der@1abdb8a&#93; for key &#91;org.hibernate.impl.SessionFactoryImpl@14e5d57 &#93; from thread &#91;http-8080-Processor2&#93;
                10&#58;10&#58;46,159 DEBUG TransactionSynchronizationManager&#58;161 - Bound value &#91;org.springframework.orm.hibernate3.SessionHol der@1933eab&#93; for key &#91;org.hibernate.impl.SessionFactoryImpl@14e5d57 &#93; to thread &#91;http-8080-Processor2&#93;
                10&#58;10&#58;46,160 DEBUG PathBasedFilterInvocationDefinitionMap&#58;110 - Converted URL to lowercase, from&#58; '/img/logo.png'; to&#58; '/img/logo.png'
                10&#58;10&#58;46,161 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/img/logo.png'; pattern is /**; matched=true
                10&#58;10&#58;46,162 DEBUG FilterChainProxy&#58;297 - /img/logo.png at position 1 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.context.HttpSessionContextIn tegrationFilter@585f2a'
                10&#58;10&#58;46,163 DEBUG HttpSessionContextIntegrationFilter&#58;176 - Obtained from ACEGI_SECURITY_CONTEXT a valid SecurityContext and set to SecurityContextHolder&#58; 'net.sf.acegisecurity.context.SecurityContextImpl@ 106bde8&#58; Null authentication'
                10&#58;10&#58;46,164 DEBUG FilterChainProxy&#58;297 - /img/logo.png at position 2 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.ui.webapp.AuthenticationProc essingFilter@1833c9c'
                10&#58;10&#58;46,165 DEBUG FilterChainProxy&#58;297 - /img/logo.png at position 3 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.wrapper.ContextHolderAwareRe questFilter@71a97'
                10&#58;10&#58;46,166 DEBUG FilterChainProxy&#58;297 - /img/logo.png at position 4 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.providers.anonymous.Anonymou sProcessingFilter@11dfe3'
                10&#58;10&#58;46,167 DEBUG AnonymousProcessingFilter&#58;95 - Replaced SecurityContextHolder with anonymous token&#58; 'net.sf.acegisecurity.providers.anonymous.Anonymou sAuthenticationToken@1f75ab1&#58; Username&#58; anonymousUser; Password&#58; &#91;PROTECTED&#93;; Authenticated&#58; true; Details&#58; null; Granted Authorities&#58; ROLE_ANONYMOUS'
                10&#58;10&#58;46,169 DEBUG FilterChainProxy&#58;297 - /img/logo.png at position 5 of 5 in additional filter chain; firing Filter&#58; 'net.sf.acegisecurity.intercept.web.SecurityEnforc ementFilter@86b4d5'
                10&#58;10&#58;46,171 DEBUG PathBasedFilterInvocationDefinitionMap&#58;110 - Converted URL to lowercase, from&#58; '/img/logo.png'; to&#58; '/img/logo.png'
                10&#58;10&#58;46,177 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/img/logo.png'; pattern is /admin/**; matched=false
                10&#58;10&#58;46,180 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/img/logo.png'; pattern is /index.jsp; matched=false
                10&#58;10&#58;46,184 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/img/logo.png'; pattern is /login.do*; matched=false
                10&#58;10&#58;46,185 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/img/logo.png'; pattern is /logout.do*; matched=false
                10&#58;10&#58;46,186 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/img/logo.png'; pattern is /css/**; matched=false
                10&#58;10&#58;46,187 DEBUG PathBasedFilterInvocationDefinitionMap&#58;121 - Candidate is&#58; '/img/logo.png'; pattern is /img/**; matched=true
                10&#58;10&#58;46,189 DEBUG AbstractSecurityInterceptor&#58;372 - Secure object&#58; FilterInvocation&#58; URL&#58; /img/logo.png; ConfigAttributes&#58; &#91;ROLE_ANONYMOUS, ROLE_USER&#93;
                10&#58;10&#58;46,190 DEBUG AbstractSecurityInterceptor&#58;415 - Previously Authenticated&#58; net.sf.acegisecurity.providers.anonymous.Anonymous AuthenticationToken@1f75ab1&#58; Username&#58; anonymousUser; Password&#58; &#91;PROTECTED&#93;; Authenticated&#58; true; Details&#58; null; Granted Authorities&#58; ROLE_ANONYMOUS
                10&#58;10&#58;46,190 DEBUG AbstractSecurityInterceptor&#58;432 - Authorization successful
                10&#58;10&#58;46,191 DEBUG LoginEventBean&#58;43 - Recievent event &#58;FilterInvocation[/c

                Comment


                • #9
                  I have found another way to solve this problem. In general I think Acegi security filter should not be processing css, js, gif, jpeg, png, etc.
                  This solution is also discussed with the appfuse project (see http://issues.appfuse.org/browse/APF-30)

                  Solution:
                  The current configuration has all content (/*) mapped to the Acegi securityFilter in web.xml. This results in files such as /scripts/fade.js, /styles/print.css, etc. making it into the Acegi security filter chain.

                  Specifiy Acegi filter chain definitions in applicationContext-security.xml as follows:

                  Code:
                  <bean id="filterChainProxy" class="net.sf.acegisecurity.util.FilterChainProxy">
                    <property name="filterInvocationDefinitionSource">
                      <value>
                        CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
                        PATTERN_TYPE_APACHE_ANT
                        /j_acegi_security_check*=httpSessionContextIntegrationFilter,authenticationProcessingFilter,
                                 anonymousProcessingFilter,securityEnforcementFilter
                        /**/*.html*=httpSessionContextIntegrationFilter,authenticationProcessingFilter,
                                 anonymousProcessingFilter,securityEnforcementFilter
                        /**/*.jsp*=httpSessionContextIntegrationFilter,authenticationProcessingFilter,
                                 anonymousProcessingFilter,securityEnforcementFilter
                      </value>
                    </property>
                  </bean>
                  This definition explicitely handels only URLs with the following endings:
                  Code:
                  /j_acegi_security_check
                  /**/*.html
                  /**/*.jsp
                  You can also have it for /**/*.do, etc.

                  Additional you must not include /css/**, /img/**, etc. in the FilterSecurityInterceptor

                  Code:
                  CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
                  PATTERN_TYPE_APACHE_ANT
                  /index.jsp=ROLE_TELLER
                  /logout.jsp=ROLE_TELLER
                  /login.jsp*=ROLE_ANONYMOUS,ROLE_TELLER
                  /**=ROLE_TELLER

                  Comment


                  • #10
                    thanks wolf, I'll check if your suggestion solves my troubles aswell.

                    I've been avoiding this issue by specifying
                    <property name="alwaysUseDefaultTargetUrl"><value>true</value></property>

                    on AuthenticationProcessingFilter definition. This will always redirect to index.jsp after
                    succesfull authentication.

                    Comment


                    • #11
                      Has anyone else found a solution to this redirect problem? I'm getting the same thing where once a user logs in, it redirects to the correct page but it just downloads and displays the css style link from the adminLogin. I am authenticated and authorized correctly and if I logout and log back in, it redirects correctly. However that first time, it's certainly disconcerting.

                      I have tried several ways of linking in the stylesheet information, using import in a couple of ways (with and without URL("...")), as well as the link tag in the header. If it is present, the default url that it goes to after a login is the css text. If the css link/import is not there, it goes to the correct url.

                      Btw, I am using acegi 0.9.0.

                      Comment


                      • #12
                        Sweet mercy, oddities with web browsers.

                        I tried this with Safari, Firefox, Camino, and Opera on my Mac all with the same results - the first time to load the login page, once I logged in, it would redirect to the contents of the css file linked from the login page.

                        Like Ben said, it was a problem with the css access. Apparently, if you are redirected to the login page and it has resources that are secure and you are not yet authenticated, the browser seems to put that request into the queue or something and once you've authenticated, that's the thing that it goes to.

                        So the net solution is as he suggested - to make both the login jsp as well as the css file it references accessible by the ROLE_ANONYMOUS and it redirects correctly.

                        It's just interesting to me to see that all the browsers I tried exhibited the same behavior - I would have thought that it would not have loaded the css file initially but redirectly correctly upon login in at least one of the browsers.

                        Anyway, issue resolved (for me at least). Thanks for the previous posts!

                        Comment

                        Working...
                        X