Index: SecurityFilter.java
===================================================================
--- SecurityFilter.java	(revision 6796)
+++ SecurityFilter.java	(working copy)
@@ -46,27 +46,27 @@
     /**
      * filter config login form
      */
-    private static final String LOGIN_FORM = "LoginForm";
+    protected static final String LOGIN_FORM = "LoginForm";
 
     /**
      * filter config unsecured URI
      */
-    private static final String UNSECURED_URI = "UnsecuredPath";
+    protected static final String UNSECURED_URI = "UnsecuredPath";
 
     /**
      * Authentication type
      */
-    private static final String AUTH_TYPE = "AuthType";
+    protected static final String AUTH_TYPE = "AuthType";
 
     /**
      * Authentication type Basic
      */
-    private static final String AUTH_TYPE_BASIC = "Basic";
+    protected static final String AUTH_TYPE_BASIC = "Basic";
 
     /**
      * Authentication type Form
      */
-    private static final String AUTH_TYPE_FORM = "Form";
+    protected static final String AUTH_TYPE_FORM = "Form";
 
     /**
      * @see javax.servlet.Filter#init(javax.servlet.FilterConfig)
@@ -131,7 +131,7 @@
      * @param response HttpServletResponse
      * @return <code>true</code> if the user is authenticated
      */
-    private boolean authenticate(HttpServletRequest request, HttpServletResponse response) {
+    protected boolean authenticate(HttpServletRequest request, HttpServletResponse response) {
         try {
 
             String unsecuredUri = (String) Server.getInstance().getLoginConfig().get(UNSECURED_URI);