i've made a full web app with jsp and servlet. this will be used by the users under windows NT/windows 2000 and IE.
the jsp "talks" with the servlet, and the servlet makes sql queries to a distant MS sql server 7.
i do have a database of users, only those users can access to the tables i use in my sql queries.
i'd like to make this : only the person that have a login matching with the one in the database will be able to access to my web app. the others will get a message like : "you are not alowed to access to this page" in the browser.
i've been told that there is no way to deal with NT challenge/response (integrated authentication).
so is there an other way to do this ?