Actually URLs are. You are using an SSLSocket. HTTPS can't control that fact. Your URL using a GET is usually displayed in a browser, so some people have this misconception. So, yes it's all encrypted.
Wade -----Original Message----- From: Christopher Schultz [mailto:[EMAIL PROTECTED] Sent: Thursday, October 23, 2003 5:38 PM To: Tomcat Users List Subject: Re: encrypting a form's action URL with HTTPS link Naveen/Adam, > Well yes, in case of SSL (secure socket Layer) all your form content > along with the page header will go in an encrypted format. Of note is that the URL itself is *not* encrypted, although everything else is. So, be careful that you specify your HTTPS form submissions as being POST instead of GET; otherwise your form data will go into the (unencrypted) URL. -chris --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]