Balogh Andras wrote:
>The http authentication is valid for the curent session only ( i
think).
>I am sure if the browser is closed the authorization box will be
shown
>again.
Yes. That's true.
>Please try waiting for 30 min. that's the usually sesssion
invalidation time
>than see what happens ??
That's not true.
Balogh is getting confused with HttpSessions.
The browser should hang on to the authentication until it is closed
_or_
the server decides that the authentication is no longer valid.
If the server wishes to do invalidate the authentication it just
returns a NOT-Authenticated response to the client.
You can find the response code in HttpServiceResponse.
-----Original Message-----
From: David Mossakowski <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED] <[EMAIL PROTECTED]>
Date: Monday, May 10, 1999 7:17 PM
Subject: Re: HTTP authentication in a servlet?
>This is great but how does one un-authorize people? (How to make
browser
show
>the login box again?)
>
>dave.
>
>Nic Ferrier wrote:
>
>> >>> Oliver Springauf <[EMAIL PROTECTED]> 5/6/99 12:21:01
PM
>> >>>
>> >couldn't I just let my
>> >servlet do the authentication? I'm thinking about the basic HTTP
>> >method, with "401" response and challenge
>>
>> Yes, you could.
>>
>> >Will my web server interfere with this? Has anyone tried this?
>>
>> Yes. I do it quite a lot.
>>
>> Check out the following link on my site:
>>
>> http://www.tapsellferrier.co.uk/Servlets/FAQ/authentication.html
>>
>> It will explain how to do just the servlet part.
>>
>> (there is a problem with the Base64 conversion I'll be posting a
new
>> one today some time so if you need the base64 bit wait till
tonight or
>> tommorow).
>>
>> Connecting to a database is easy too.
>>
>> You just try and open a Connection object with the username and
>> password and if it doesn't raise an exception you've got an
>> authenticated user.
>>
>> If you need anymore details let me know.
>>
>> Nic Ferrier
>> Tapsell-Ferrier Ltd
>> www.tapsellferrier.co.uk
>>
>>
___________________________________________________________________________
>> To unsubscribe, send email to [EMAIL PROTECTED] and include in
the
body
>> of the message "signoff SERVLET-INTEREST".
>>
>> Archives:
http://archives.java.sun.com/archives/servlet-interest.html
>> Resources:
http://java.sun.com/products/servlet/external-resources.html
>> LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
>
>--
>David Mossakowski [EMAIL PROTECTED]
>http://www.dwdog.com/styk 212.310.7275
>
>"I don't sit idly by, I'm planning a big surprise"
>F U G A Z I
>
>___________________________________________________________________________
>To unsubscribe, send email to [EMAIL PROTECTED] and include in
the body
>of the message "signoff SERVLET-INTEREST".
>
>Archives:
http://archives.java.sun.com/archives/servlet-interest.html
>Resources:
http://java.sun.com/products/servlet/external-resources.html
>LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
___________________________________________________________________________
To unsubscribe, send email to [EMAIL PROTECTED] and include in
the body
of the message "signoff SERVLET-INTEREST".
Archives: http://archives.java.sun.com/archives/servlet-interest.html
Resources:
http://java.sun.com/products/servlet/external-resources.html
LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
Nic Ferrier
Tapsell-Ferrier Ltd
www.tapsellferrier.co.uk
___________________________________________________________________________
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff SERVLET-INTEREST".
Archives: http://archives.java.sun.com/archives/servlet-interest.html
Resources: http://java.sun.com/products/servlet/external-resources.html
LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
