I'm writing a web application where some media files can't be allowed to be accessed by the public. I, for example, have some QuickTime movies which has to be protected one way or another. The best way to do this must be to require the user to verify with normal HTTP authentication. Am I right this far?
Then, to protect the resource but to control the access permission I could grant access to that specific resource by giving my servlet the needed login and pass and create a RequestDispatcher. That approach would allow the servlet to verify that currently logged in user to my database to see if that particular user should have access to the resource and depending on that either forward the request to the resource that's protected or forward the request to another page. So, my question is if a servlet can access resources that require login over HTTP and which API I should use. And, of course, if this is the best way to protect different resources that resides on a web server and grant access through a servlet. Thanks! Markus Kirsten ___________________________________________________________________________ To unsubscribe, send email to [EMAIL PROTECTED] and include in the body of the message "signoff SERVLET-INTEREST". Archives: http://archives.java.sun.com/archives/servlet-interest.html Resources: http://java.sun.com/products/servlet/external-resources.html LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
