[EMAIL PROTECTED] wrote:
For example my user can create a client form creatClient.jsp but can
also go straight to the editClient.jsp by adding it to the URl and I
want to stop this
1) Put JSPs under /WEB-INF somewhere (like /WEB-INF/jsp/...) Somebody
already mentioned this. Only access the J
If you are talking about preventing the user from typing stuff into the
URL box, it is my opinion that it is a waste of time to approach the
problem in this way. You can't prevent the user from typing whatever
they want into the URL box. Period. So, don't try to build anything
based on the flawed a
Um, now about using tokens? Support is built-in after all.
Regards,
David
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Sent: Wednesday, October 05, 2005 8:42 AM
To: user@struts.apache.org
Subject: encoding the session
Hi,
Can anyone advise on how to encode the
yes
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Sent: 05 October 2005 13:47
To: Struts Users Mailing List
Cc: user@struts.apache.org
Subject: Re: encoding the session
are you using struts framework
<[EMAIL PROTECTED]>
05/10/2005 18:12
Please resp
are you using struts framework
<[EMAIL PROTECTED]>
05/10/2005 18:12
Please respond to
"Struts Users Mailing List"
To
cc
Subject
encoding the session
Hi,
Can anyone advise on how to encode the session Id so that a user cannot
just type in the URL and get to the jsp?
For example my
5 matches
Mail list logo
