Does anybody know a good way of providing security/authentication in server code ?
Books contain examples of cookie authentication, but I don't really see a big plus of doing
this versus just sending user and password in envelope body. Anyway, if somebody is
able to intercept a request, he will be able to see both HTTP headers and body.
Digital River Inc.
9625 West 76th Street, Suite 150
Eden Prairie, MN 55344
Tel: (952) 253-8411
Fax: (952) 253-8497