On Sat, Aug 29, 2009 at 8:31 AM, Thilani<[email protected]> wrote:

> Can you please explain how can I use this with my application?
> With this should I use security-constraint as well?

Of course: the security-constraint indicates the resource to protect;
if a client makes a request for a non-protected resource via https,
send a redirect to the non-ssl url for that resource.

-- 
Hassan Schroeder ------------------------ [email protected]
twitter: @hassan

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to