Hello, I have really simple login wich is a link to a Method "login" wich comprise ...... REDIRECT for login <dtml-call "RESPONSE.redirect(baseURL)"> and 'login' method has NO autorizations for anonymous. It redirects me on the right "baseURL" page, but the "baseURL" inludes an "info" Document with <dtml-var "AUTHENTICATED_USER.getUserName()"> <dtml-in "AUTHENTICATED_USER.getRoles()"> who shows ONLY anonymous after the first login.. IF I do a second login (exactly the same) then it works fine and i got the right Names and Roles.. Is it a known problem, or do i have some magic acquisition trick who eludes me ? I'm on 2.1.6 win. -- Didier Georgieff DDAF du Bas-Rhin - Cellule SIG 2, rue des Mineurs 67070 Strasbourg Cedex tél : 03.88.25.20.33 - fax : 03.88.25.20.01 email : didier.georgieff@agriculture.gouv.fr GéoWeb http://10.67.90.3 (Intranet Agriculture) GéoWeb http://sertit10.u-strasbg.fr (Internet)