[EMAIL PROTECTED]
Sent: Tuesday, January 13, 2004 6:16 PM
Subject: Re: handling form based authentication w/ remember-me cookie
Quoting [EMAIL PROTECTED]:
Are Servlet filters supposed to be called for both GET and POST
methods? They seem to be getting called for GETs only
On Jan 14, 2004, at 3:52 AM, Nadeem Bitar wrote:
A note about storing passwords in cookies.
Encode the password.
Do not store the userid with the password in the cookie, store some id
associated with the user id.
You can generate a one-way hash (MD5) of the contents of the cookie
with
a secret
Dhaliwal
-Original Message-
From: Matt Raible [mailto:[EMAIL PROTECTED]
Sent: Wednesday, January 14, 2004 5:28 AM
To: Struts Users Mailing List
Subject: Re: handling form based authentication w/ remember-me cookie
On Jan 14, 2004, at 3:52 AM, Nadeem Bitar wrote:
A note about storing
To: Struts Users Mailing List
Subject: handling form based authentication w/ remember-me cookie
I am using Struts and building a logon page to do Form-based
authentication
under Tomcat. I want to also have a checkbox for the user to check
that
says
remember me so that I can send them
On Jan 13, 2004, at 12:42 AM, Craig R. McClanahan wrote:
Filters are *not* required to be invoked on j_security_check
invocations. In
fact, Tomcat won't even enable the j_security_check url unless an
unauthenticated user accesses a protected resource. Basically, I
believe there
is no
based authentication w/ remember-me cookie
On Jan 13, 2004, at 12:42 AM, Craig R. McClanahan wrote:
Filters are *not* required to be invoked on j_security_check
invocations. In
fact, Tomcat won't even enable the j_security_check url unless an
unauthenticated user accesses a protected
]
Subject: Re: handling form based authentication w/ remember-me cookie
Dipak,
Are you certain that the filter will be invoked on the /j_security_check
request when container-based security is used? I have not tested this, but
it would not surprise me to find that some containers do not execute filters
'
Subject: RE: handling form based authentication w/ remember-me cookie
Hi Max,
I haven't tested it either. I read it about this in IBM WebSphere V5.0
Security handbook (page 64).
Regards,
Dipak Parmar
-Original Message-
From: Max Cooper [mailto:[EMAIL PROTECTED]
Sent: Monday
-Original Message-
From: Parmar, Dipakkumar [mailto:[EMAIL PROTECTED]
Sent: Tuesday, January 13, 2004 03:57 PM
To: 'Struts Users Mailing List'
Subject: RE: handling form based authentication w/ remember-me cookie
Hi Max,
I haven't tested it either. I read it about
To: Struts Users Mailing List; [EMAIL PROTECTED]
Subject: Re: handling form based authentication w/ remember-me cookie
Dipak,
Are you certain that the filter will be invoked on the /j_security_check
request when container-based security is used? I have not tested
]
Sent: Tuesday, January 13, 2004 6:16 PM
Subject: Re: handling form based authentication w/ remember-me cookie
Quoting [EMAIL PROTECTED]:
Are Servlet filters supposed to be called for both GET and POST
methods? They seem to be getting called for GETs only on Tomcat 5.
-Chris
For filters
to be getting called for GETs only on Tomcat 5.
-Chris
-Original Message-
From: Parmar, Dipakkumar [mailto:[EMAIL PROTECTED]
Sent: Tuesday, January 13, 2004 03:57 PM
To: 'Struts Users Mailing List'
Subject: RE: handling form based authentication w/ remember-me cookie
Hi Max,
I haven't
I am using Struts and building a logon page to do Form-based authentication
under Tomcat. I want to also have a checkbox for the user to check that says
remember me so that I can send them a cookie. I'm not sure how to intercept
the form values because I have to post to j_security_check. How can
Mailing List
Subject: handling form based authentication w/ remember-me cookie
I am using Struts and building a logon page to do Form-based authentication
under Tomcat. I want to also have a checkbox for the user to check that says
remember me so that I can send them a cookie. I'm not sure how
form based authentication w/ remember-me cookie
I am using Struts and building a logon page to do Form-based authentication
under Tomcat. I want to also have a checkbox for the user to check that says
remember me so that I can send them a cookie. I'm not sure how to
intercept
the form values
form based authentication w/ remember-me cookie
I am using Struts and building a logon page to do Form-based authentication
under Tomcat. I want to also have a checkbox for the user to check that says
remember me so that I can send them a cookie. I'm not sure how to
intercept
the form values
- Original Message -
From: Parmar, Dipakkumar [EMAIL PROTECTED]
To: Struts Users Mailing List [EMAIL PROTECTED]
Sent: Monday, January 12, 2004 7:43 AM
Subject: RE: handling form based authentication w/ remember-me cookie
Hi Chris,
You can do this using Servlet Filter. What you need
]
To: Struts Users Mailing List [EMAIL PROTECTED]
Sent: Monday, January 12, 2004 7:43 AM
Subject: RE: handling form based authentication w/ remember-me cookie
Hi Chris,
You can do this using Servlet Filter. What you need to do is write
postLoginFilter that maps to the j_security_check url.
In doFilter
18 matches
Mail list logo
