Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

a servlet/jsp question and HTTP_REFERER

Posted on 2006-11-07
13
Medium Priority
?
894 Views
Last Modified: 2013-11-24
i have a jsp authentication form that posts to a servlet.
if the authentication fails(ie bad username) i want to send back message to the calling jsp.

i was going to use HTTP_REFERER and just send the message back to HTTP_REFERER , but i have been doing some reading and it appears that HTTP_REFERER  is not dependable. That some tools like norton will block this

so does any but know this for sure and how do other people handle this. For now i have a myreferer hidden in the jsp, but seems a little kludgy

Thanks for any help
Randy
0
Comment
Question by:paries
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 6
  • 5
  • 2
13 Comments
 
LVL 86

Expert Comment

by:CEHJ
ID: 17890443
You could use Ajax and thus not only be able to send a message to the caller, but do it without leaving the caller
0
 

Author Comment

by:paries
ID: 17890464
yeah thats ok, but i am having all sorts of wonderful security problems with alot of my customers so ajax is only an option, which means you still have to write for the browsers that will not run ajax.

thanks
0
 
LVL 8

Expert Comment

by:colr__
ID: 17890465
Or you could simply post back to the calling JSP with a url paramater that states that the login failed.
0
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

 

Author Comment

by:paries
ID: 17890496
correct, but the question is , what is the best way to post back to the calling jsp?
0
 

Author Comment

by:paries
ID: 17890502
how do i know what the calling jsp is?
0
 
LVL 86

Expert Comment

by:CEHJ
ID: 17890530
You could make clients pass themselves as referer explicitly as one of the post params
0
 

Author Comment

by:paries
ID: 17890552
k that i how this post started. That is exactly what i am doing now.
"For now i have a myreferer hidden in the jsp, but seems a little kludgy" I guess i should have said
"For now i have a myreferer as a hidden in the jsp, but seems a little kludgy"
0
 
LVL 86

Expert Comment

by:CEHJ
ID: 17890616
Well what i'm suggesting is user interaction. What you're suggesting sounded like hard-coding...
0
 

Author Comment

by:paries
ID: 17890822
ok i am confused
how do i "make clients pass themselves as referer explicitly as one of the post params"
0
 
LVL 8

Expert Comment

by:colr__
ID: 17890877
<input type="hidden" name="referrer" value="thisPage.jsp" />
0
 
LVL 86

Expert Comment

by:CEHJ
ID: 17890889
Try doing something like this in the onsubmit handler of the form

function submitForm() {
    document.forms[0].username.value = ...
    document.forms[0].password.value = ...
    document.forms[0].referer.value = document.location;
    return true;
}

..............

<input type="hidden" name="referer" value="" >
0
 
LVL 86

Accepted Solution

by:
CEHJ earned 2000 total points
ID: 17890907
Or rather

document.forms[0].referer.value = document.location.href;
0
 
LVL 86

Expert Comment

by:CEHJ
ID: 17891794
:-)
0

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Introduction Java can be integrated with native programs using an interface called JNI(Java Native Interface). Native programs are programs which can directly run on the processor. JNI is simply a naming and calling convention so that the JVM (Java…
Java functions are among the best things for programmers to work with as Java sites can be very easy to read and prepare. Java especially simplifies many processes in the coding industry as it helps integrate many forms of technology and different d…
Viewers learn about the scanner class in this video and are introduced to receiving user input for their programs. Additionally, objects, conditional statements, and loops are used to help reinforce the concepts. Introduce Scanner class: Importing…
How to fix incompatible JVM issue while installing Eclipse While installing Eclipse in windows, got one error like above and unable to proceed with the installation. This video describes how to successfully install Eclipse. How to solve incompa…
Suggested Courses

604 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question