I don't think IP is necessarily the best way to do it, as IP addresses within an intranet can change if you use DHCP (as most LANs do).
I've never tried it on a Java platform but I do believe using Internet Explorer and IIS there is some way to do NTLM authentication, i.e. Internet Explorer automatically passes on its Microsoft Network credentials to the webserver, which is then available to CGI programs and scripts and the like. I've never tried to do this with IIS/Tomcat though (or any other servlet container). Of course, if you want to keep it simple... could you just use persistent cookies? :) -jmc =========================================================================== To unsubscribe: mailto [EMAIL PROTECTED] with body: "signoff JSP-INTEREST". For digest: mailto [EMAIL PROTECTED] with body: "set JSP-INTEREST DIGEST". Some relevant FAQs on JSP/Servlets can be found at: http://archives.java.sun.com/jsp-interest.html http://java.sun.com/products/jsp/faq.html http://www.esperanto.org.nz/jsp/jspfaq.jsp http://www.jguru.com/faq/index.jsp http://www.jspinsider.com
