I am writing a "SSO Get Auth Token" script in Security Manager trying to extract a SSO token from a form post.
For some weird reason the body of the HTTPServletRequest is empty.
With the Java HttpServlet API you can only read the request input data once from memory. With multi-part posts you have to process in inputstream, parse it out and the pass through the derived request parameters.
What time of request are you dealing with form-url encoded or multi-part post ?
regards Malcolm Edgar
After receiving help from Larry, we found it was due to URL was incorrect.
My original URL was
and since the form is under SecurityManager, so it will redirect to the secured site, and that redirection does not pass the post data through.
If we change the URL to the "secure" site, then all the post data will go through