That wouldn't give you much safety would it?
The least thing you should do is check in the ServletA page whether the user
was logged in properly.
IMO the best way to do this is to check the access rights in every page. If
the user hasn't logged in, save the requested URL in a session var and
redirect to the loginservlet. After successful login, the servlet can
redirect you back to the original location.
Check out the tag libraries that are publicly available (at tomcat, JSPTags,
JSPinsider ...). There are several examples who do that for you with just a
few lines of code.
Also check out the security options your web server or servlet engine gives
you. Resin e.g. has a nice system for authentication.
Geert Van Damme
> -----Original Message-----
> From: A mailing list about Java Server Pages specification and reference
> [mailto:[EMAIL PROTECTED]]On Behalf Of Karau, Joe
> Sent: donderdag 1 maart 2001 20:11
> To: [EMAIL PROTECTED]
> Subject: Re: login servlet ??
>
>
> Sufi, you could encode the url of the servlet, and pass the url of the
> servletA as a parameter.
> Example href=/servlets/YourLoginServlet?ToServlet=SerlvetA
>
> Then, in your login servlet simply do a
> String forwardTo = request.getParameter("ToServlet");
>
> and the "forwardTo" String will be the url of the servlet that you
> originally linked to.
>
> To be on the safe side though, you may wish to encode the URL of servletA
> using:
>
> href=/servlets/YourLoginServlet?ToServlet=<%=java.net.URLEncoder.e
> ncode(stri
> ng_of_servletA_url)%>
>
>
>
> Joseph Karau
> Kingland Systems
> [EMAIL PROTECTED]
> 507-536-3629
> AIM: jkara3629
>
>
> -----Original Message-----
> From: sufi malak [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, March 01, 2001 12:45 PM
> To: [EMAIL PROTECTED]
> Subject: login servlet ??
>
>
> Hi, please don't be mad, I know for you guru it's an easy question, please
> bear with me, I am still learning servlets
> I am trying to have a login servlet, and other servlets, when I click to a
> link of a servletA, I want to loginservlet get invoqued, my
> question is how
> to save the url of the servletA so if the loginservlet success we will
> return to servletA
> thanks
> God helps all
> _________________________________________________________________
> Get your FREE download of MSN Explorer at http://explorer.msn.com
>
> ==================================================================
> =========
> To unsubscribe: mailto [EMAIL PROTECTED] with body: "signoff
> JSP-INTEREST".
> For digest: mailto [EMAIL PROTECTED] with body: "set JSP-INTEREST
> DIGEST".
> Some relevant FAQs on JSP/Servlets can be found at:
>
> http://java.sun.com/products/jsp/faq.html
> http://www.esperanto.org.nz/jsp/jspfaq.html
> http://www.jguru.com/jguru/faq/faqpage.jsp?name=JSP
> http://www.jguru.com/jguru/faq/faqpage.jsp?name=Servlets
>
> ==================================================================
> =========
> To unsubscribe: mailto [EMAIL PROTECTED] with body: "signoff
> JSP-INTEREST".
> For digest: mailto [EMAIL PROTECTED] with body: "set
> JSP-INTEREST DIGEST".
> Some relevant FAQs on JSP/Servlets can be found at:
>
> http://java.sun.com/products/jsp/faq.html
> http://www.esperanto.org.nz/jsp/jspfaq.html
> http://www.jguru.com/jguru/faq/faqpage.jsp?name=JSP
> http://www.jguru.com/jguru/faq/faqpage.jsp?name=Servlets
>
===========================================================================
To unsubscribe: mailto [EMAIL PROTECTED] with body: "signoff JSP-INTEREST".
For digest: mailto [EMAIL PROTECTED] with body: "set JSP-INTEREST DIGEST".
Some relevant FAQs on JSP/Servlets can be found at:
http://java.sun.com/products/jsp/faq.html
http://www.esperanto.org.nz/jsp/jspfaq.html
http://www.jguru.com/jguru/faq/faqpage.jsp?name=JSP
http://www.jguru.com/jguru/faq/faqpage.jsp?name=Servlets
