I'm dealing in a servlet or JSP with a request from a certain user. After some work, I
want lead the user to another active page which lies in a different site. When
redirecting I want to post several parameters to that page, and some parameters should
be kept secret to the user. The response.sendRedirect() method does change the url to
destination, but then the user will see all parameter values in his browser's URL bar.
That's bad.
I have tried many ways, many tags. But I found they all eventually invoke the
response.sendRedirect() method with parameters encoded in the url string. That makes
no difference to me.
Following is the structure of my app:
------------------- html page ---------------
+ user's browser + <--------------- + outside cgi +
------------------- params not shown ---------------
\ /|
\ /
\ /
\| /
------------------
+ my servlet +
+ redirect with +
+ params +
------------------
May people help.
