W
whenshaw
Guest
It looks like you are still getting past the insecure content problem. If you are using Form-based authentication (I assume you are), you should then see a 401 (Unauthorized) returned when we attempt to access home.html (at that point, the client the would invoke j_spring_security_check to really log in). The fact that you are getting the 403 (Forbidden) back from the server instead of the expected 401 is probably what changed that is causing the login to fail. Did anything change on the server side related to permissions or security in general?
Continue reading...
Continue reading...