• Post Reply Bookmark Topic Watch Topic
  • New Topic

session object security.  RSS feed

 
Rob Deer
Greenhorn
Posts: 17
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi, I creating some jsp pages which requires users to login. based on their account credentials, they're assigned certain session objects. when they try to access a page, it will check their session objects. if they have a certain session object required to view a page, it will display it. otherwise they get redirected somewhere else. Just wondering is this a safe in terms of viewing security to have session objects do this? thanks.
 
Ben Souther
Sheriff
Posts: 13411
Firefox Browser Redhat VI Editor
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
It's probably as safe as any other method you could devise.
Are you using SSL?
How sensitive is the information?
 
With a little knowledge, a cast iron skillet is non-stick and lasts a lifetime.
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!