I'm running on Tomcat 5.5 server. The problem is on first login the user is redirect back to the login page. I have extended the AuthenticationProcessingFilter to
store the redirect target in ACEGI_SECURITY_TARGET_URL_KEY based on the user authority in the onSuccessfulAuthentication
method but it seems that it doesn't working on the first login.