RE: Browser History by HTTP-REFERER

2006-08-09 Thread George.Dinwiddie
Monkeyden said: > Sorry George, I misread one of the previous posts in my > response to yours. You're correct. JSP is not the place for > this type of authentication/validation, although I don't know > that I would want everything to ActionServlet handles to > require a referer. I dont suspec

Re: Browser History by HTTP-REFERER

2006-08-08 Thread Thomas Joseph
t filter is a better choice than depending > > > on the inclusion of a particular tile. > > > > > > > -Original Message- > > > > From: Thomas Joseph [mailto:[EMAIL PROTECTED] > > > > Sent: Monday, August 07, 2006 2:36 AM > > > &

RE: Browser History by HTTP-REFERER

2006-08-07 Thread Vijay Gupta
hread.java:219) at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:178) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Monday, August 07, 2006 1:06 PM To: user@struts.apache.org Subject: RE: Browser History by HTTP-REFERER I would suggest that a servlet filt

Re: Browser History by HTTP-REFERER

2006-08-07 Thread Monkeyden
> > From: Thomas Joseph [mailto:[EMAIL PROTECTED] > > Sent: Monday, August 07, 2006 2:36 AM > > To: Struts Users Mailing List > > Subject: Re: Browser History by HTTP-REFERER > > > > > > Try this: > > 1. Include a common JSP page (say like the company

Re: Browser History by HTTP-REFERER

2006-08-07 Thread Bart Busschots
t; From: Thomas Joseph [mailto:[EMAIL PROTECTED] > Sent: Monday, August 07, 2006 2:36 AM > To: Struts Users Mailing List > Subject: Re: Browser History by HTTP-REFERER > > > Try this: > 1. Include a common JSP page (say like the company logo) in > every other JSP page (usi

Re: Browser History by HTTP-REFERER

2006-08-07 Thread Monkeyden
ge- > From: Thomas Joseph [mailto:[EMAIL PROTECTED] > Sent: Monday, August 07, 2006 2:36 AM > To: Struts Users Mailing List > Subject: Re: Browser History by HTTP-REFERER > > > Try this: > 1. Include a common JSP page (say like the company logo) in > every other JSP pa

RE: Browser History by HTTP-REFERER

2006-08-07 Thread George.Dinwiddie
sn't matter how you were, but rather how you are that > decides your future. A right attitude will get you to Success. > - Original Message - > From: Raghuveer > To: 'Thomas Joseph' > Cc: user@struts.apache.org > Sent: Monday, August 07, 20

Re: Browser History by HTTP-REFERER

2006-08-06 Thread Thomas Joseph
uveer To: 'Thomas Joseph' Cc: user@struts.apache.org Sent: Monday, August 07, 2006 10:54 AM Subject: RE: Browser History by HTTP-REFERER Yes ,I am trying to restrict users only after login. Like banking applications -Original Message- From: Thomas Joseph

RE: Browser History by HTTP-REFERER

2006-08-06 Thread Raghuveer
Yes ,I am trying to restrict users only after login. Like banking applications -Original Message- From: Thomas Joseph [mailto:[EMAIL PROTECTED] Sent: Saturday, August 05, 2006 9:53 AM To: Struts Users Mailing List; [EMAIL PROTECTED] Subject: Re: Browser History by HTTP-REFERER

Re: Browser History by HTTP-REFERER

2006-08-05 Thread Martin Gainty
found this solution which expires the current page at http://forum.java.sun.com/thread.jspa?threadID=641697 // Set to expire far in the past. response.setHeader("Expires", "Sat, 6 May 1995 12:00:00 GMT"); // Set standard HTTP/1.1 no-cache headers. response.setHeader("Cache-Control", "no-store, no

Re: Browser History by HTTP-REFERER

2006-08-04 Thread Thomas Joseph
Can you please specify in more broad terms, what are you trying to do (especially with the referrer code)? Are you trying to restrict user to access pages only after login or something like that? Thanks and Regards, Thomas Joseph Kott Software Pvt. Ltd. | Vallamattom Estate | M.G.Road | Cochin

RE: Browser History by HTTP-REFERER

2006-08-04 Thread Raghuveer
How about Adding nocache="true" to struts-config.xml file. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Thursday, August 03, 2006 8:16 PM To: user@struts.apache.org; [EMAIL PROTECTED] Subject: RE: Browser History by HTTP-REFERER Do you re

RE: Browser History by HTTP-REFERER

2006-08-03 Thread Raghuveer
PROTECTED] Subject: RE: Browser History by HTTP-REFERER Do you realize that browsers are not required to send a Referer header? And that many proxies strip out such a header? You will have far better success if you create a robust application that can do the correct thing even if URLs are received

Re: Browser History by HTTP-REFERER

2006-08-03 Thread Antonio Petrelli
[EMAIL PROTECTED] ha scritto: Do you realize that browsers are not required to send a Referer header? And that many proxies strip out such a header? And referer can be easily spoofable ;-) http://refspoof.mozdev.org/ - To u

RE: Browser History by HTTP-REFERER

2006-08-03 Thread George.Dinwiddie
Do you realize that browsers are not required to send a Referer header? And that many proxies strip out such a header? You will have far better success if you create a robust application that can do the correct thing even if URLs are received out of the expected order. Trying to hamstring the bro