On Tue, 2002-07-09 at 15:02, Gegner, Greg (MED) wrote: > I have a page that queries the database to make sure userid and password > are ok. Then I bring back the group the user is in. Security is done > by group on each page.
but in that case, you're handling the authentication yourself, you're not deferring to the servlet container, and using the servlet api, to do it. right? that's undesirable for our webapp, unfortunately. we would prefer to let the servlet container do that work. is this uncommon? do most people handle authentication internally? - donald ___________________________________________________________________________ To unsubscribe, send email to [EMAIL PROTECTED] and include in the body of the message "signoff SERVLET-INTEREST". Archives: http://archives.java.sun.com/archives/servlet-interest.html Resources: http://java.sun.com/products/servlet/external-resources.html LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
