tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Shapira, Yoav" <>
Subject RE: Security of Servlets
Date Fri, 01 Oct 2004 12:53:31 GMT


><form method="POST" action="j_security_check" name="login">
>Which I'm guessing is picked up by Tomcat,
>though I don't know how to 'add checking to it'?
>Any advice appreciated, since I'd prefer java to jscript!

If you're trusting the container, trust it ;)  You're depending on the
container to auth for you, so you can't do server-side checks here,
unless you customize the relevant Realm further (which is of course
possible with Tomcat).


This e-mail, including any attachments, is a confidential business communication, and may
contain information that is confidential, proprietary and/or privileged.  This e-mail is intended
only for the individual(s) to whom it is addressed, and may not be saved, copied, printed,
disclosed or used by anyone else.  If you are not the(an) intended recipient, please immediately
delete this e-mail from your computer system and notify the sender.  Thank you.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message