Re: cocoon login action

Charlene Mitchell Fri, 10 Jan 2003 00:16:46 -0800

Hi,

Okay, I think intercepting the request after
j_security_check will be a nightmare (and I don't want
to rewrite App Server authentication).


But isn't there any easier way?

E.g. match for * and call an action which checks that
the session attribute is set, else it sets it, and
then the match is passed on to the specific match,
such as "*.jsp"

?

Charlene 

 --- [EMAIL PROTECTED] wrote: > Make your
j_security_check an XSP page.
> In that page, you can store things in the session.
> 
> Here's the code of a page I use.
> 
> 
> <?xml version="1.0" encoding="ISO-8859-1"?>
> 
>     <xsp:page language="java"
>                       xmlns:xsp="http://apache.org/xsp";
>                       xmlns:esql="http://apache.org/cocoon/SQL/v2";
>               
>
xmlns:xsp-request="http://apache.org/xsp/request/2.0";
>               
>
xmlns:xsp-session="http://apache.org/xsp/session/2.0";
>                       create-session="true">
> 
>         <html>
> 
>             <esql:connection>
>                 <esql:pool>pierrefabre</esql:pool>
> 
>                 <esql:execute-query>
>                       <esql:query>
>                               select * from tblLogin
>                                       where name =
> '<xsp-request:get-
> parameter name="username"/>'
>                                       and password =
> '<xsp-request:get-
> parameter name="password"/>' ;
>                       </esql:query>
> 
>                     <esql:results>
>                       <xsp-session:set-attribute
> name="user">admin</xsp-
> session:set-attribute>
>                         
>                       <body onload="window.location 
> = './../frames.html'"></body>
>                     </esql:results>
> 
>                   <esql:no-results>
>                               <head>
>                                       <link rel="stylesheet"
> type="text/css" 
> href="./../css/pierrefabre.css"/>
>                                       <title>Pierre Fabre
> M�dicament</title>
>                                         <meta
> http-equiv="Content-Type" 
> content="text/html; charset=ISO-8859-1"/>
>                               </head>
> 
>                               <body class="top" onload="window.alert ('Mot de 
> passe ou nom d' + '&quot;' + 'utilisateur ne sont
> pas corrects') ; 
> window.location = './../admin/password.html'">
>                               </body>
>                   </esql:no-results>
>                 </esql:execute-query>
> 
>             </esql:connection>
>       </html>
>     </xsp:page>
> 
> Citeren Charlene Mitchell <[EMAIL PROTECTED]>:
> > I use form authentication in my web.xml and my
> login
> > page posts to j_security_check 

__________________________________________________
Do You Yahoo!?
Everything you'll ever need on one web page
from News and Sport to Email and Music Charts
http://uk.my.yahoo.com

---------------------------------------------------------------------
Please check that your question  has not already been answered in the
FAQ before posting.     <http://xml.apache.org/cocoon/faq/index.html>

To unsubscribe, e-mail:     <[EMAIL PROTECTED]>
For additional commands, e-mail:   <[EMAIL PROTECTED]>

Re: cocoon login action

Reply via email to