> -----Original Message-----
> From: A mailing list about Java Server Pages specification
> and reference
>
> I know that no browser should enable you to do that,
> but i'm searching for
> legal way to do it, like certificate my servlet with the
> client, or any
> other way. The only solution i came up with is cumbersome -
> wrapping the
> access to the 3rd party server with a servlet of mine that will take a
> request from the client forward it to the server along with
> the required
> cookie. then take the response and send it to the client. The
> problem with
> that solution is that i have to interpret the response since i have to
> replace every reference to the server with a reference to the wrapping
> servlet. this is rather difficult since that server also
> stores file and
> they can contain anything in any format.
> lee
>
> Hi Lee,
>
> I don't think any Browser allows you to do this. This will become a
> serious security Problem if allowed by Browser.
One way, if you could get a static HTML file onto their server. Is to put
some JavaScript into a file on their server which sets the cookie - you
could pass the (encoded) cookie in, via the URL:
eg
http://thereserver/appdir/3plogin.html?cookie=############################
Even better if you could put a simple CGI script or servlet on their server
that you could call to set the cookie.
HTH,
Steve
===========================================================================
To unsubscribe: mailto [EMAIL PROTECTED] with body: "signoff JSP-INTEREST".
FAQs on JSP can be found at:
http://java.sun.com/products/jsp/faq.html
http://www.esperanto.org.nz/jsp/jspfaq.html
