Women in Technology

Hear us Roar



Article:
  Using Tomcat 4 Security Realms
Subject:   HTTP 403 - Wrong password and then?
Date:   2004-02-03 23:55:10
From:   sbrbot
Response to: HTTP 403 - Wrong password and then?

If user types a wrong password, this password is then embedded inside request and sent to the server. Running reload in a browser forces the browser to send the same request once again (with the wrong password!) and of course one san expect only the same answer from the server. Go back to the original authentication page instead.