Obviously It's posted again when you reload the page, but I don't think this is the way it has to be. Why does the browser post information (Password) it should not be aware any more after the Login-request has been processesed? Anyway, I am interested in a solution how to disable this behaviour. Any ideas?
frazz > -----Original Message----- >MIME-Version: 1.0 >Content-Type: text/plain; > charset="iso-8859-1" >Content-Transfer-Encoding: quoted-printable >Subject: RE: Problem: Login with Struts; Security Bug? >Date: Tue, 14 Jan 2003 10:19:10 -0600 >Message-ID: <[EMAIL PROTECTED]> >From: "Durham David Cntr 805CSS/SCBE" <[EMAIL PROTECTED]> >To: "Struts Users Mailing List" <[EMAIL PROTECTED]> >You are probably reposting your username and password to logon.do. = >Essentially logging on twice. -- +++ GMX - Mail, Messaging & more http://www.gmx.net +++ NEU: Mit GMX ins Internet. Rund um die Uhr f�r 1 ct/ Min. surfen! -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
