You see a security problem by passing user and password in the url?
Yes, it is. URLs are part of the access logs kept by HTTP servers, leaving them at the mercy of anyone who has (legitimately or illegitimately) access to them. They're also kept in web browser, web server and proxy caches, making this a not-so-good approach.
Hi, i am trying a lot with Android and Jsp using the example here. But JSP file is not able to get the value (which is set in NameValuePair in Android Activity) in request.getParamater. For me, the returned username and Password always null , unless i ran the JSP file by giving by name and password as