How does everyone protect their CommandDriven Actions with container managed
security?
If I have an action alias "checkout", and I need to protect both
"checkout.action" and "checkout!ConfirmOrder.action", what would I need to
specify in my web.xml file?
I have tried the following with bad results:
<security-constraint>
<web-resource-collection>
<web-resource-name>Registered Customer
Resources</web-resource-name>
<url-pattern>/checkout*</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>REG_CUST</role-name>
</auth-constraint>
</security-constraint>
I have also tried "/checkout*.action" as the url-pattern.
Thanks.
-------------------------------------------------------
This sf.net email is sponsored by: Influence the future
of Java(TM) technology. Join the Java Community
Process(SM) (JCP(SM)) program now.
http://ads.sourceforge.net/cgi-bin/redirect.pl?sunm0004en
_______________________________________________
Opensymphony-webwork mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/opensymphony-webwork
