Hi friends.. i don't now how to put restrictions on pages so that they should be viewed through proper channel.. what should i use for it. because if person once get the name of a servlet he can cal it directly whithout using a proper path... Thanx in advance.. Bhupendra
posted 16 years ago
Include an authenticator fragment that checks for the validity of the user on the top of each page. If the user's session is new (session.isNew())the authenticator fragment will show a session expiry page and/or redirect to a page considered safe by it.