|
To make things easier, I want to make a plain text
login page called login.jsp that contains a form with fields to enter username
and password. Then I will submit the info to a verify page (verify.jsp) that
checks to see if the username and password combination matches that which is
stored in a mySQL database.
I was wondering how to keep only valid users from
being able to access verify.jsp. meaning not just anyone could login into
http://localhost/verify.jsp. Would
a session variable be the best way to do this? Where I would store the IP of the
client and a special generated ID that would be saved in the session object and
appened to the url.
Does this sound like a reasonable way of
approaching the problem. If so, I don't see the specs for a 'Session' object and
how do I obtain the IP of the client?
thanx
-ryan
|
- Duplicate context initialization? Ryan
- Duplicate context initialization? David Wall
- Re: plain text login Rob Tanner
- Re: plain text login Tagunov Anthony
- Re: plain text login Sam Newman
- Re: plain text login Christian Rauh
