Hi You can assign a session after validating user. You can also keep in session the information about the user privileges. And only allow the creation of the session in the servlet that makes the authentifiaction. All the other pages that can be accesed by authentificated user most require the session. If the session doesn't exist the user have no permissions. The session id usually is large enough to be hard to guess. Miguel Angel Meng, Dong J (CAP, CDI) wrote: > Hi: > > I want to create a secure area on the Intranet that can be accessed only by > employees with a valid user name and password. The secure area can be used > to store documents that cannot/should not be made accessible to all > employees. Do you have any ideas how to make this work? > > Thanks. > > DJ > > ___________________________________________________________________________ > To unsubscribe, send email to [EMAIL PROTECTED] and include in the body > of the message "signoff SERVLET-INTEREST". > > Archives: http://archives.java.sun.com/archives/servlet-interest.html > Resources: http://java.sun.com/products/servlet/external-resources.html > LISTSERV Help: http://www.lsoft.com/manuals/user/user.html -- --------------------------------------------------------------- *************************************************************** Miguel Angel Matajaime Lopez [EMAIL PROTECTED] Tel: 57212096 � ext: 2096 No existe mayor alegr�a que la de no tener motivo de tristeza. *************************************************************** --------------------------------------------------------------- ___________________________________________________________________________ To unsubscribe, send email to [EMAIL PROTECTED] and include in the body of the message "signoff SERVLET-INTEREST". Archives: http://archives.java.sun.com/archives/servlet-interest.html Resources: http://java.sun.com/products/servlet/external-resources.html LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
Re: Proctection of some secure area on Intranet
MIGUEL ANGEL MATA JAIME LOPEZ Wed, 8 Mar 2000 21:05:58 -0800
- Proctection of some secure area on Intranet Meng, Dong J (CAP, CDI)
- Re: Proctection of some secure area on ... MIGUEL ANGEL MATA JAIME LOPEZ
- Re: Proctection of some secure area on ... Henning Brune
- Re: Proctection of some secure area on ... Danny Rubis
- Re: Proctection of some secure area on ... Claes Holmerson
- Re: Proctection of some secure area on ... Javier Cazares
- Re: Proctection of some secure area... Serge Belolipetski
