(function() {
var doLogin = function() {
var uname = doc.byId("name").toLowerCase();
var passw = doc.byId("password").toLowerCase();
//var digest = sha1.digest(uname + ":My Realm:" + passw);
xhr.send(...);
}
return {
login: function() {
doLogin();
return false;
}
}
})();
...
<input type="submit" onclick="login()"/>
all hidden and private handling of the user name and password. Might
not work without javascript :)
On Feb 22, 2009, at 4:11 PM, Gregor Schneider wrote:
To the OP:
1. May I ask what database it is you're using?
2- I'd go for the following solution:
Create a JSP-page accepting the credentials. The username should be
converted to uppercase. The password should be left as is so that
case-sensivity here is maintained.
Don't know if I'm missing something, but to me that looks like a walk
in the park.
Rgds
Gregor
--
just because your paranoid, doesn't mean they're not after you...
gpgp-fp: 79A84FA526807026795E4209D3B3FE028B3170B2
gpgp-key available @ http://pgpkeys.pca.dfn.de:11371
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org