On May 10, 2005, at 9:11 AM, Richard O. Hammer wrote:
Working with JSP, Struts, and Tomcat 5, I would like to have some web pages which will be sent to the browser under specific programmatic circumstances, such as a login failure, but which cannot be reached by a user who types the URL of the login-failure page into the browser. But I don't know either the correct way or a neat way to do this.
Can somebody enlighten me on this? How would you do it?
The trick is to put pages under WEB-INF such that they are inaccessible directly. Only going through an action URL that performs a server-side forward can render them.
Erik
_______________________________________________ Juglist mailing list [email protected] http://trijug.org/mailman/listinfo/juglist_trijug.org
