aspose file tools
The moose likes Servlets and the fly likes Protected resource Big Moose Saloon
  Search | Java FAQ | Recent Topics
Register / Login
JavaRanch » Java Forums » Java » Servlets
Reply Bookmark "Protected resource" Watch "Protected resource" New topic
Author

Protected resource

Shriniwas Deshpande
Greenhorn

Joined: Apr 05, 2001
Posts: 1
posted
0
Quote
Hi !
In my application, I am having a servlet which is a protected resource. So if user is not logged in, I am sending him/her to another servlet which accepts userid and password (login page). When I logged in, I go to the servlet (which is a protected resource). I visit one of the links there and if I press browser's back button, inspite of checking for whether user has logged in or not, I see login page again. This is happening only in IE, and not in Netscape 4.7. Can I get some input on this issue?
Thanking in adavance
-Shrini
Mark Simms
Ranch Hand

Joined: Jul 20, 2000
Posts: 36
posted
0
Quote
Be sure to set the headers so the login page expires immediately:
<% response.addHeader("Pragma", "No-cache");
response.addHeader("Cache-Control", "no-cache");
response.addDateHeader("Expires", 1);
%>
(above assumes JSP for the login page)
if it's HTML, then I believe you can do the same thing in Javascript !
Mark
 
I agree. Here's the link: http://ej-technologies/jprofiler - if it wasn't for jprofiler, we would need to run our stuff on 16 servers instead of 3.
 
subject: Protected resource
 
Similar Threads
logout functionality not works at Wesphere 6.0
Single controller vs Filter
Tomcat session error
Question on form based authentication
security constraint with jsp forward