For a lack of a better subject line. Let me explain.

I have some actions which are not supposed to be accessed by users. They are mostly for internal uses within the program. Specifically, I like to include many actions on a page and build a poor-man's portlet. So what I have, architecturally speaking, is one action whose view triggers a whole bunch of other actions.

My thoughts lead me to this: while it is very low probability that these included action paths can be guessed at, I nevertheless do not enjoy it being above zero.

I propose adding a new attribute which dictates when an action may be invoked. I do not have a favorite choice among my ideas, but here they are:
1) A public attribute; defaults to true.
2) A private attribute; defaults to false.
3) A dispatcher attribute; defaults to all; allows request|include|forward|error (like the filter dispatcher attribute of web.xml)

For my needs, I want to be able to say which action mappings may not be directly accessed; they must be forwarded to or included by.

Paul

---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Reply via email to