Page 1 of 1
About Question enthuware.jwpv6.2.921 :
Posted: Sun Jan 13, 2013 2:54 pm
by gurpreet_asrgndu
the explanation says that http method in form method attribute must be POST. is POST mandatory ??
Re: About Question enthuware.jwpv6.2.921 :
Posted: Sun Jan 13, 2013 3:45 pm
by admin
The specification doesn't mention explicitly that it must be POST but the example they have given shows POST and some containers we checked in the past didn't work with GET.
So, I would go with POST but your doubt is valid. The specification is not 100% clear on this.
HTH,
Paul.
Re: About Question enthuware.jwpv6.2.921 :
Posted: Mon Sep 16, 2013 1:39 pm
by sheunis
Shouldn't this really be:
<form method=POST action="j_security_check">
<input type="text" name="j_username">
<input type="password" name="j_password">
<input type=submit>
</form>
otherwise you're displaying the password in cleartext in the form?
Re: About Question enthuware.jwpv6.2.921 :
Posted: Mon Sep 16, 2013 5:56 pm
by admin
Yes, password would be preferable here, but it is not an error if it is text.
HTH,
Paul.