> From: is_maximum [mailto:[EMAIL PROTECTED]
> Subject: RE: how to setting up SSL for a specific page
>
> I need only login page to be secured not all the pages after that
This is a harder problem, since switching back to HTTP after
authenticating via HTTPS opens a security hole.
Caldarale, Charles R wrote:
>
> Read section 12 of the servlet spec. Use a in conjunction
> with the that covers only the login page.
>
> - Chuck
Thank you Charles,
I've read the servlet spec, but my problem is I specified /login.jsp as
url-pattern in deployment descriptor and before the
> From: is_maximum [mailto:[EMAIL PROTECTED]
> Subject: how to setting up SSL for a specific page
>
> how can I secure only pages that contains confidential
> information and not all the pages?
Read section 12 of the servlet spec. Use a in conjunction
with the that covers only the login page
