From custom LoginUserAuth class, based on business rules I am redirecting to
 a new(xxx) portlet. xxx portlet is placed in portal instead of myportal sin
ce I force user to go come to xxx before he accesses any other portlet.

In doPostLogin() method I am calling like this:
aRunData.setRedirectURL(http://servername:port/wps/portal/xxx)
super.doPostLogin(,,,)
My portlet is called and it works fine except for the following.
My problem is
1. Session values passed from custom login class are becoming null in my por
tlet xxx. I made public.session=true in config file but didnt resolve the is
sue.
2. How to get lLogged-in userid. request.getUser().getuserId is not working
3. I am concerned that what if user copy pastes the url in the browser he ca
n reset the password? Is there any way to redirect user to main login page w
hen he comes to xxx directly?

Any help is highly appreciated

[ Post a follow-up to this message ]