=?iso-8859-1?Q?R=E9f=2E_=3A_setHeader_-_Authorization?=

Thu, 12 Dec 2002 04:58:04 -0800

**********************************************************************
This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they
are addressed. If you have received this email in error please notify
the system manager.

**********************************************************************
It depends what kind of authentication you use.

If you use a form with userId and password, you can set a parameter in the HttpSession after a successful log on using something like this

 request.getSession().putValue("isAuthentified",new Boolean(true));

and then check on each jsp/servlet if the value is true, otherwise, redirect to the log on form.

If you use authentication with a 401 type access, ( user/log on box prompted by the browser ), I doubt you can bypass it by setting something in the headers, it may be possible, but I don't see how. If someone knows better, please correct me. I've had this situation before.

Arnaud.




"Laxmikanth M.S." <[EMAIL PROTECTED]>
Envoyé par : "A mailing list for discussion about Sun Microsystem's Java               Servlet API Technology." <[EMAIL PROTECTED]>

12.12.2002 10:04
Veuillez répondre à "A mailing list for discussion about Sun Microsystem's Java               Servlet API Technology."

       
        Pour :        [EMAIL PROTECTED]
        cc :        
        Objet :        setHeader - Authorization



Hi all,
is it possible to set Header with authorization parameter.
I want to skip authorization to be skipped by setting the value in
header...kind of singlesignon
thanks in advance
laxmikanth
*********************************************************************
Disclaimer: The information in this e-mail and any attachments is
confidential / privileged. It is intended solely for the addressee or
addressees. If you are not the addressee indicated in this message, you may
not copy or deliver this message to anyone. In such case, you should destroy
this message and kindly notify the sender by reply email. Please advise
immediately if you or your employer does not consent to Internet email for
messages of this kind.
*********************************************************************

___________________________________________________________________________
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff SERVLET-INTEREST".

Archives: http://archives.java.sun.com/archives/servlet-interest.html
Resources: http://java.sun.com/products/servlet/external-resources.html
LISTSERV Help: http://www.lsoft.com/manuals/user/user.html

Reply via email to