Hi Peter, You are taking the wrong approach here I think. You should not code these kind of security issues directly into your JSP or servlets, but instead use the Tomcat security features. If you use Tomcat, of course :-)
There are some very good article on O'Reilly about protecting parts of your web site with username/password combinations: http://www.onjava.com/pub/a/onjava/2001/07/24/tomcat.html http://www.onjava.com/pub/a/onjava/2001/08/06/webform.html Good luck, Ronald Wildenberg. =========================================================================== To unsubscribe: mailto [EMAIL PROTECTED] with body: "signoff JSP-INTEREST". For digest: mailto [EMAIL PROTECTED] with body: "set JSP-INTEREST DIGEST". Some relevant FAQs on JSP/Servlets can be found at: http://archives.java.sun.com/jsp-interest.html http://java.sun.com/products/jsp/faq.html http://www.esperanto.org.nz/jsp/jspfaq.jsp http://www.jguru.com/faq/index.jsp http://www.jspinsider.com
