Major Description
There are environments where posting both the username and password from the same page is not allowed.
This enhancement allows us to still use the LoginProxyServlet and active authentication, but to optional turn off getting credentials from the HTTP request
and instead get them from the session (from previous interaction). The default setting is as it was before, using the request parameters
<servlet-name>LoginProxyServlet</servlet-name>
<servlet-class>org.apache.jetspeed.login.LoginProxyServlet</servlet-class>
<init-param>
<param-name>credentialsFromRequest</param-name>
<param-value>true</param-value>
</init-param>
</servlet>