I was going through the Authentication PDF and got the following questions.
What is the purpose of RuntimeServletName parameter when AuthenticationType is PRCustom? Can I give any arbitrary string as the value for this? Is it mandatory to pass this init param?
While using SSL, how the SecureServletName parameter is being used? From the servlet-mapping, we are calling the same servlet both for SSL and Non-SSL. How the servlet class is diffeerentiating the SSL and Non-SSL and how the SecureServletName parameter is being utilized from within the servlet? Can the value of SecureServletName parameter be any arbitrary string?