Put the results to the HttpSession attribute. Vlad
P.S. Using dynamic SQL statements in web applications is very dangerous. Just assume that a Principal.getName() return a String like "'; ALTER TABLE public.tblloginname; bla-bl-bla". You should use parameterized PreparedStatement instead of Statement. P.P.S. to a jsp with java code is not recommended. The functionality of the page should be moved to a http filter or a servlet. View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3831842#3831842 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3831842 ------------------------------------------------------- This SF.Net email is sponsored by: IBM Linux Tutorials Free Linux tutorial presented by Daniel Robbins, President and CEO of GenToo technologies. Learn everything from fundamentals to system administration.http://ads.osdn.com/?ad_id=1470&alloc_id=3638&op=click _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
