RE: determining URL selected prior to redirection for j_security_check?

2002-07-24 Thread Durham David Cntr 805CSS/SCBE
Yeah, there's a lot of ways to do that. do something like: if (!loggedIn) { response.sendRedirect(login.jsp?redirect= + request.getRequestURI()); return; } then on the login form: input type=hidden name=redirect value=%=

RE: determining URL selected prior to redirection for j_security_check?

2002-07-24 Thread Durham David Cntr 805CSS/SCBE
err... my bad, this is not relevant -Original Message- From: Durham David Cntr 805CSS/SCBE Sent: Wednesday, July 24, 2002 5:09 PM To: Tomcat Users List Subject: RE: determining URL selected prior to redirection for j_security_check? Yeah, there's a lot of ways to do that. do

RE: determining URL selected prior to redirection for j_security_check?

2002-07-24 Thread Stadter, Jim
: determining URL selected prior to redirection for j_security_check? err... my bad, this is not relevant -Original Message- From: Durham David Cntr 805CSS/SCBE Sent: Wednesday, July 24, 2002 5:09 PM To: Tomcat Users List Subject: RE: determining URL selected prior to redirection

RE: determining URL selected prior to redirection for j_security_check?

2002-07-24 Thread Durham David Cntr 805CSS/SCBE
, Jim [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 24, 2002 5:13 PM To: Tomcat Users List Subject: RE: determining URL selected prior to redirection for j_security_check? Not relevant because of the automatic redirection by Tomcat, I assume? Thanks for taking a look though. Jim

RE: determining URL selected prior to redirection for j_security_check?

2002-07-24 Thread Mike Jackson
To: Tomcat Users List Subject: RE: determining URL selected prior to redirection for j_security_check? Yeah, I think you might be better off with implementing your own security mechanisms for this. Although, maybe request.getHeader(Referer) has something in it? Interesting to note that this differs

RE: determining URL selected prior to redirection for j_security_check?

2002-07-24 Thread Stadter, Jim
Thanks guys. Referer doesn't have the original URL in it either. Jim -Original Message- From: Mike Jackson [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 24, 2002 3:40 PM To: Tomcat Users List Subject: RE: determining URL selected prior to redirection for j_security_check

Re: determining URL selected prior to redirection for j_security_check?

2002-07-24 Thread Steven J. Owens
On Wed, Jul 24, 2002 at 03:39:54PM -0700, Mike Jackson wrote: If you're trying to do security you should remember that the Referer header can be forged with little to no problem. The original question was: From: Stadter, Jim [mailto:[EMAIL PROTECTED]] Subject: determining URL selected

RE: determining URL selected prior to redirection for j_security_check?

2002-07-24 Thread Stadter, Jim
: Re: determining URL selected prior to redirection for j_security_check? On Wed, Jul 24, 2002 at 03:39:54PM -0700, Mike Jackson wrote: If you're trying to do security you should remember that the Referer header can be forged with little to no problem. The original question

Re: determining URL selected prior to redirection for j_security_check?

2002-07-24 Thread Craig R. McClanahan
On Wed, 24 Jul 2002, Steven J. Owens wrote: Date: Wed, 24 Jul 2002 19:35:37 -0400 From: Steven J. Owens [EMAIL PROTECTED] Reply-To: Tomcat Users List [EMAIL PROTECTED], [EMAIL PROTECTED] To: Tomcat Users List [EMAIL PROTECTED] Subject: Re: determining URL selected prior to