Hi! I was just checking the consensus on how to do a secure login and it seems to be along the lines of:
* set a simple login application to run at https://your.own.site.com/login * set the rest of your application to run at http://your.own.site.com/main * if the user tries to directly go to http://your.own.site.com/main, redirect him to https://your.own.site.com/login * on successful login, set a cookie, and redirect to http://your.own.site.com/main Is this it? Am I missing something? Any better ways to do it?
-- You received this message because you are subscribed to the Google Groups "Google Web Toolkit" group. To post to this group, send email to google-web-tool...@googlegroups.com. To unsubscribe from this group, send email to google-web-toolkit+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/google-web-toolkit?hl=en.
