I have a Web site which has some contents require user login to access. I'd like to redirect the user to a page displaying "session timed out" message when the user's login session expired and redirect the user to the login page when a user tries to access secured content (let's say he booked mark a URL of secured content when he logged in last time) before login. I tryed to do this by creating an object, putting it in a user's session when the user has been authenticated and checking the object's existance in a filter. But this doesn't work, as in either case the object doesn't exist - either the object has not been created since the user has not logged in, or, the session timed out and the object is unbound from the session.
Any suggestions? Thanks. ___________________________________________________________________________ To unsubscribe, send email to [EMAIL PROTECTED] and include in the body of the message "signoff SERVLET-INTEREST". Archives: http://archives.java.sun.com/archives/servlet-interest.html Resources: http://java.sun.com/products/servlet/external-resources.html LISTSERV Help: http://www.lsoft.com/manuals/user/user.html