|
Posted by Barry Margolin on May 29, 2006, 12:48 pm
If you were Registered and logged in, you could reply and use other advanced thread options
> Hi,
>
> I'd like to know how I can deny non-ssl(non-https) access to my login
> page, but after user logging in, normal http should be used.
>
> Should it be set at my web page or at the my web server (OC4J
> container) level?
> Now I have both http and https on the web server enabled, but the
> tester can access the non-secured login page by manually typing in
> "http://....".
>
> Any hints? Thanks.
I suggest you ask in the appropriate comp.infosystems.www.authoring.*
newsgroups.
--
Barry Margolin, barmar@alum.mit.edu
Arlington, MA
*** PLEASE post questions in newsgroups, not directly to me ***
*** PLEASE don't copy me on replies, I'll read them in the group ***
| 
XML site map