Gili wrote: > > Jon, I think you need to give more information about your actual > requirements. As I already mentioned, I have a simple servlet which > serves up images by ID and the ID is passed in via a HTTP POST (although > originally I had it going via a HTTP GET and you could do this too). > > I don't see why one would need access to the Wicket session...? > Again, it isn't clear to me what your actual requirements are. If you > simply have a client-server architecture, why not code up all your > server components as servlets to send image data, etc? >
This is not Jon's argument, I do not believe, but an argument that I think is valid. Let us say that your images served up by your servlet are generated charts, such as the relative wages of employees. You wouldn't want just anyone to be able to access this data unless they had authenticated successfully. In order to determine whether they have authenticated, you would need to check the wicket session. -- Philip A. Chapman Application Development: Java, Visual Basic (MCP), PostgreSQL, MySQL, MSSQL Linux, Windows 9x, Windows NT, Windows 2000, Windows XP
signature.asc
Description: OpenPGP digital signature
