The login information entered by the user in login.jsp is validated by an action ValidateUser. It has the following entry in struts-config file.
<action path="/validateUser"
type="com.struts.actions.ValidateUser"
name="authenticateForm"
scope="page"
validate="false">
<set-property property="secure" value="true"/>
<forward name="success" path="/success.jsp" />
<forward name ="failure" path="/login.do" />
</action>
In ValidateUser class, I check the user credentials and forward the request to success or failure based on the result. My issue is when it forwards to failure, it gets forwarded correctly but the information entered in login.jsp is appended to the url as query
string like www.mysite.com/login.do?username=test&password=test.
Can some please help me in removing these fields from the url? I've used post method in login.jsp to submit the form.