tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Shapira, Yoav" <Yoav.Shap...@mpi.com>
Subject RE: Security of Servlets
Date Fri, 01 Oct 2004 12:53:31 GMT

Hi,

><form method="POST" action="j_security_check" name="login">
>
>Which I'm guessing is picked up by Tomcat,
>though I don't know how to 'add checking to it'?
>Any advice appreciated, since I'd prefer java to jscript!

If you're trusting the container, trust it ;)  You're depending on the
container to auth for you, so you can't do server-side checks here,
unless you customize the relevant Realm further (which is of course
possible with Tomcat).

Yoav



This e-mail, including any attachments, is a confidential business communication, and may
contain information that is confidential, proprietary and/or privileged.  This e-mail is intended
only for the individual(s) to whom it is addressed, and may not be saved, copied, printed,
disclosed or used by anyone else.  If you are not the(an) intended recipient, please immediately
delete this e-mail from your computer system and notify the sender.  Thank you.


---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org


Mime
View raw message