<% // this piece of code can be put at the beginning of pages that need a login Object user = session.getAttribute("user"); if (user == null) { // tell the login page which page should it redirect back StringBuffer buf = request.getRequestURL(); String queryString = request.getQueryString(); if (queryString!=null) { buf.append("?"); buf.append(queryString); } session.setAttribute("login_redirect_page", buf.toString()); response.sendRedirect("/login.jsp"); } %>