cookie based "remember me" with jdbc realm container security