Struts Security

2009-08-24 Thread Kamlesh Koringa 
I want to integrate Struts2 (2.1.6) with HDIV using SPI ( ProcessingParamter
Integaration) define in link below.
http://wiki.apache.org/struts/HDIV

Is there any source or help avaliable for that. In this link there is
integration for Struts 1.3.8. and web application is not downloaded properly
given in link. Can any one provides Sample application of Struts2 + HDIV
using SPI.



-- 
--
Kamlesh Koringa

Re: Struts - Security

2009-08-08 Thread Kamlesh Koringa 
Thanks Martin for your reply

I have checked QueryCrypt. It only works with Static URL generated from
Server side to encrypt Parameters. And I am doubt will it work with Struts2
tag. For that I have to use scriplet to get All paramters and encrypt it and
generate encrypted Parameters. If i not wrong s:a / will not allow to use
scriptlet. So I have to use simple html tag for generate URL.  Is there any
other way to do this.
 Thanks
Kamlesh
On Sat, Aug 8, 2009 at 5:59 PM, Martin Gainty mgai...@hotmail.com wrote:


 QueryCryptSessionListener handles authentication
 http://www.theserverside.com/news/thread.tss?thread_id=36841

 BASIC URL authorization can be achieved thru predefined roles from
 tomcat-users
 http://www.informit.com/articles/article.aspx?p=24600

 i assume you're using TC?
 Martin Gainty
 __
 Verzicht und Vertraulichkeitanmerkung/Note de déni et de confidentialité

 Diese Nachricht ist vertraulich. Sollten Sie nicht der vorgesehene
 Empfaenger sein, so bitten wir hoeflich um eine Mitteilung. Jede unbefugte
 Weiterleitung oder Fertigung einer Kopie ist unzulaessig. Diese Nachricht
 dient lediglich dem Austausch von Informationen und entfaltet keine
 rechtliche Bindungswirkung. Aufgrund der leichten Manipulierbarkeit von
 E-Mails koennen wir keine Haftung fuer den Inhalt uebernehmen.
 Ce message est confidentiel et peut être privilégié. Si vous n'êtes pas le
 destinataire prévu, nous te demandons avec bonté que pour satisfaire
 informez l'expéditeur. N'importe quelle diffusion non autorisée ou la copie
 de ceci est interdite. Ce message sert à l'information seulement et n'aura
 pas n'importe quel effet légalement obligatoire. Étant donné que les email
 peuvent facilement être sujets à la manipulation, nous ne pouvons accepter
 aucune responsabilité pour le contenu fourni.




  From: kamleshkori...@gmail.com
  Date: Sat, 8 Aug 2009 11:22:06 +0530
  Subject: Struts - Security
  To: user@struts.apache.org
  
  Hi
  I am searching for good security frameworks for Struts2.
  I have tried for HDIV http://www.hdiv.org. It is good framework but
 support
  up to Struts 2.0.11 not Struts-2.1.6.
 
  So please help me to find any other framework or any other way to solve
  security related issues.
  My main concorns are.
  - URL encryption ( no one can modify generated URL).
  - URL authorization.
 
 
 
 
  Thanks
  --
  Kamlesh Koringa

 _
 Get back to school stuff for them and cashback for you.

 http://www.bing.com/cashback?form=MSHYCBpubl=WLHMTAGcrea=TEXT_MSHYCB_BackToSchool_Cashback_BTSCashback_1x1

Struts - Security

2009-08-07 Thread Kamlesh Koringa 
Hi
I am searching for good security frameworks for Struts2.
I have tried for HDIV http://www.hdiv.org. It is good framework but support
up to Struts 2.0.11 not Struts-2.1.6.

So please help me to find any other framework or any other way to solve
security related issues.
My main concorns are.
- URL encryption ( no one can modify generated URL).
- URL authorization.




Thanks
--
Kamlesh Koringa

Richafaces component integration with Struts 2

2008-11-17 Thread Kamlesh Koringa 
Hi

 

I am working in struts 1.1 and want to start new project using struts 2. I
want to use Richfaces component in my Project.

Can I use Richfaces component in Strut 2 project?

 

I have created one project using Struts-jsf-plugin.

There is no error in log but it gives unexpected output in browser with java
script error.

 

Any sample project found for this?

 

Thanks

Kamlesh