Deny non-ssl access for login web pages

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View

I'd like to know how I can deny non-ssl(non-https) access to my login
page, but after user logging in, normal http should be used.

Should it be set at my web page or at the my web server (OC4J
container) level?
Now I have both http and https on the web server enabled, but the
tester can access the non-secured login page by manually typing in

Any hints? Thanks.

Re: Deny non-ssl access for login web pages

Quoted text here. Click to load it

I suggest you ask in the appropriate comp.infosystems.www.authoring.*

Barry Margolin,
Arlington, MA
*** PLEASE post questions in newsgroups, not directly to me ***
*** PLEASE don't copy me on replies, I'll read them in the group ***

Site Timeline