secure web page
hi friends,
am working on jsp with apache tomcat as web server...
i have a login page admin.jsp ...in that page i have button called
create.. if i click this button it directs me to a web page createusers.jsp...this page is for creting users...
but the problem isss if u place this createusers.jsp in url box still u can access this page....
i don want to happen like this ... i want createusers.jsp to open only when i click that button create in admin.jsp page...
hope some body helps me out in solvin...
thanks in advance
Ganesh
[586 byte] By [
gania] at [2007-10-3 0:13:55]
A simple way would be to pass a parameter to create account from the admin page. In create account, test that variable is not null, if it is null redirect the user to the admin page.
If you use a hidden form field using the POST method, it should stop users bookmarking the page. i.e. if you pass using the GET method, the parameter will be in the URL allowing the page to be bookmarked, or links to be mailed etc.
hi mr/miss/mrs angrycat,
thanks for the suggestion i tried as u said but i am getting the following error....
description The server encountered an internal error () that prevented it from fulfilling this request.
exception
org.apache.jasper.JasperException: Exception in JSP: /CreateAdminUsers.jsp:20
can u help me out to over come this...
thank u
gania at 2007-7-14 17:04:06 >
> as it quite clearly says....go to line 20 of create
> users.java to find out what the actual problem is..
> also, the full stack trace will allow for a better
> diagnosis..
>
> regards
Also check you are not missing the ;
off the end of line 19.
When your beginning this can be a real pain as a missing ;
reports on the following line :-)
