throws ServletException
{
if(username == null || pass == null)
throw new RuntimeException("username or password is null");
WebAuthentication pwl = new WebAuthentication();
pwl.login(username, pass);
//Only when there is web login, does the principal become visible
log("User Principal=" + request.getUserPrincipal());
log("isUserInRole(Authorized User)=" + request.isUserInRole("AuthorizedUser"));
if(request.getUserPrincipal() == null || !request.isUserInRole("AuthorizedUser"))