Thanks! Change the "get" method to "post" will solve the problem.
Daniel wrote:
> I have a login page (JSP) that uses a form to pass username and
> password.
> The recipient (another JSP) of the post parse the parameters, do some
> processing, and present the results. The problem is that the username
> and
> password are shown in the address line of browser on the recipient
> page.
>
> How can I prevent the username/password from showing in address line of
> browser
> ? Thanks for help.
RE: username and Password sent as clear text strings ... I used the proxy software, to simulate a Man in the Middle attack. ...username and Password sent as clear text strings ... I don't believe a certificate was every presented to the browser,... I completed a security review of a web server,... (Pen-Test)
Re: Provide a link to a secure website from a WinForms application ... This opens the default browser but it doesn't logon the user automatically. ... I have to insert links to a third party website which has detailed information of that company. ... this website requires a username and password to logon. ... This website redirects to the third party website but I can't add the necessary stuff to the headers.... (microsoft.public.dotnet.languages.csharp)
request.getParameter always null ... I'm using the Apache Commons FileUpload package to upload a file, ... along with some other information such as username.... send the file and info to a servlet.... The form section of the JSP:... (comp.lang.java.programmer)
Re: Integrated Windows Authentication ... > Yes the IIS is part of a domain... ... > The error is just access denied in the browser after 3 attempts at putting ... > in the username and password. ... >> Rgds.... (microsoft.public.inetserver.iis.security)
Re: User identity ... you can config the browser to ask before sending id, or use a runas to have the browser default to the desired account....Windows username to a session variable. ...pulls that username. ... (microsoft.public.dotnet.framework.aspnet)
