Of course I can (and will) check for the protocol in a servlet (and re-direct if necessary), but it would be nice to prevent non-ssl access to certain pages altogether.
Thanks,
bw
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]