Use session onstart in .jsa file (if you have JRUN) or make all your
servlets/jsp's use a HttpSessionBindingListener.valueBound() to do a
redirect to a login page if the user has not authenticated.
brad
-----Original Message-----
From: Andrey Sazonov [mailto:[EMAIL PROTECTED]]
Sent: 26 March 1999 15:42
To: [EMAIL PROTECTED]
Subject: How to force user to login
Hi all!
I have following design problem and I hope anybody can help me.I need to
develop web based
access to the database. Every user who try to work with this system need to
log in before real access
to database. It works fine with session tracking mechanism (access to
database provided by set
of appropriate servlets and beans).
But problem occurs when the user bookmarked some page and the tries to come
directly to bookmarked page.
Does anybody know the way how to prevent this and show login page instead
bookmarked one?
I think this could be implemented by processing of all request to whole site
by one servlet, which will
further dispatch all requests, but I'm afraid this could apply additional
bottleneck to system.
---------------------------
Sincerely
Andrey Sazonov
([EMAIL PROTECTED])
===========================================================================
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff JSP-INTEREST". For general help, send email to
[EMAIL PROTECTED] and include in the body of the message "help".
===========================================================================
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff JSP-INTEREST". For general help, send email to
[EMAIL PROTECTED] and include in the body of the message "help".
