I have a dynamic application that uses lps for the view and controller and access webservices (XML) for the model. The XML data is a secured resource. In my html/javascript version of the application I could access the XML without problem since the session id was sent in a cookie/URL. My question is this, does lps when it uses http datasets does it send the session information as well? If not, what is the recommended procedure for access secured data. If I use LZSecurty will I be able to call req.getUserPrincipal() from within my XML servlet.

Thanks,
Matt

Hey Matt

The LPS should pass any relevant cookie information from the browser to the XML web service. If it doesn't then let us know about it.


If I use LZSecurty will I be able to call req.getUserPrincipal() from within my XML servlet.


I'm not sure if I understand what you mean here. Could you elaborate?

-Antun

Sounds good, I'll give it a try later today. I mentioned the LZSecurity servlet in case session info was not passed to the XML servlet. I was thinking some exotic combination of LZSecurity and my servlet would get me the desired result. Since, http dataset will send cookie information I dont need to worry about it.

I have to say, if this is true, it's magnitudes better than flash mx's loadURL. First it can only load text, or jpg images - very weak. In addition it sends no session info with a request. You have to hack in url rewritting to make it work. I am quite impressed with lps. It is definitely designed for the programmer and friendly with the designer.

Matt