This content has been marked as final. Show 2 replies
You should confgure the J2EE Server container security to handle j_username and j_password (j_password is actually a sso token passed down from opensso). You don't need to get those values.
If you are really interested, you can install http header watcher stuff to your browser, so you can observe what j_username and j_password looks like.