hello,
Sorry for the off-topic message but I don't know where to find some
information. And I suppose some of you had to take care of security :) !
Here is my problem:
I'm writing a web app. to view / modify some knowledge base. Each
user will be able to access only some of these KB, and only some of them
will have RW permission. So, to do this, I have a login page where the
user enter his name / pswd and the KB (s)he want to access. Once I
accept the user info, i verify at the begining of each other pages that
the user has logged in and didn't try to access an other KB.... This
work well, maybe it's a bit "heavy"...
But what i'd like to do is to protect the user name / pswd info
while the user is logging in. If i use a simple form, these information
will be visible while going from the client to the server !
I first thought using SSL connection, but it seems to be maybe
complex to set up for what I want to do ? no ?
Ifit's the only way, could so tell me where to find some example .. (
Does the client need to have st installed on his machine, do we have to
use a third server suchas verisign ....)
Thanks for having red and maybe answered to this message.
and again sorry for this long off topic message.
Veronique
===========================================================================
To unsubscribe: mailto [EMAIL PROTECTED] with body: "signoff JSP-INTEREST".
Some relevant FAQs on JSP/Servlets can be found at:
http://java.sun.com/products/jsp/faq.html
http://www.esperanto.org.nz/jsp/jspfaq.html
http://www.jguru.com/jguru/faq/faqpage.jsp?name=JSP
http://www.jguru.com/jguru/faq/faqpage.jsp?name=Servlets
