Re: Container-managed authentication not possible

2002-08-22 Thread Troy Hart
> > To: Struts Users Mailing List <[EMAIL PROTECTED]>, > > [EMAIL PROTECTED] > > Subject: Re: Container-managed authentication not possible > > > > Brandon, > > > > SecurityFilter *does* implement isUserInRole(), getUserPrincipal(), and > >

Re: Container-managed authentication not possible

2002-08-22 Thread Max Cooper
Thanks for the info, Craig. It looks like SecurityFilter won't work with EJB apps, now or in the future, with current server implementations. My feedback about what I find lacking in current container managed security are these items: 1) The inability to submit "unsolicited" login requests (when

Re: Container-managed authentication not possible

2002-08-21 Thread Craig R. McClanahan
On Wed, 21 Aug 2002, Max Cooper wrote: > Date: Wed, 21 Aug 2002 23:49:12 -0700 > From: Max Cooper <[EMAIL PROTECTED]> > To: Struts Users Mailing List <[EMAIL PROTECTED]>, > [EMAIL PROTECTED] > Cc: [EMAIL PROTECTED] > Subject: Re: Container-managed authent

Re: Container-managed authentication not possible

2002-08-21 Thread Max Cooper
Craig, True indeed, and I have info about that on the project home page. SecurityFilter does not work with EJBs. I am looking into making it work, but your application code would have to pass the Principal into the call programmatically (and thus would not be the same as it would be for container

Re: Container-managed authentication not possible

2002-08-21 Thread Craig R. McClanahan
t be ok, depending on your security policies and application design). > -Max Craig > > - Original Message - > From: "Brandon Goodin" <[EMAIL PROTECTED]> > To: "Struts Users Mailing List" <[EMAIL PROTECTED]>; > <[EMAIL PROTECTED]> >

Re: Container-managed authentication not possible

2002-08-21 Thread Max Cooper
gt; > > - Original Message - > > From: "Elderclei R Reami" <[EMAIL PROTECTED]> > > To: <[EMAIL PROTECTED]> > > Sent: Wednesday, August 21, 2002 3:43 PM > > Subject: Container-managed authentication not possible > > > > > >

Re: Container-managed authentication not possible

2002-08-21 Thread Troy Hart
]> > Sent: Wednesday, August 21, 2002 3:43 PM > Subject: Container-managed authentication not possible > > > > Hi Friends, > > > > It's been a month developing in struts, and the party's been pretty good. > I'm just finishing my first application >

Re: [CORRECTION]RE: Container-managed authentication not possible

2002-08-21 Thread Elderclei R Reami
screveu : > De: "Brandon Goodin" <[EMAIL PROTECTED]> > Data: Wed, 21 Aug 2002 14:02:09 -0600 > Para: "Struts Users Mailing List" <[EMAIL PROTECTED]> > Assunto: [CORRECTION]RE: Container-managed authentication not possible > > Sorry I am wrong :-) It pla

RE: Container-managed authentication not possible

2002-08-21 Thread Brandon Goodin
: Max Cooper [mailto:[EMAIL PROTECTED]] Sent: Wednesday, August 21, 2002 2:08 PM To: Struts Users Mailing List; [EMAIL PROTECTED] Subject: Re: Container-managed authentication not possible Brandon, SecurityFilter *does* implement isUserInRole(), getUserPrincipal(), and getRemoteUser(). By "m

Re: Container-managed authentication not possible

2002-08-21 Thread Max Cooper
Message - From: "Elderclei R Reami" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, August 21, 2002 3:43 PM Subject: Container-managed authentication not possible > Hi Friends, > > It's been a month developing in struts, and the party's been

RE: Container-managed authentication not possible

2002-08-21 Thread Brandon Goodin
PROTECTED] Subject: Re: Container-managed authentication not possible Brandon, SecurityFilter *does* implement isUserInRole(), getUserPrincipal(), and getRemoteUser(). By "mimics" I mean that your app (or Tiles and Struts) will not be able to distinguish between SecurityFilter and Contain

Re: Container-managed authentication not possible

2002-08-21 Thread Max Cooper
t the info in a securityfilter-config.xml file rather than web.xml. -Max - Original Message - From: "Brandon Goodin" <[EMAIL PROTECTED]> To: "Struts Users Mailing List" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Wednesday, August 21, 2002 12:52 PM Subje

[CORRECTION]RE: Container-managed authentication not possible

2002-08-21 Thread Brandon Goodin
Sorry I am wrong :-) It plays nice with the request based info. -Original Message- From: Brandon Goodin [mailto:[EMAIL PROTECTED]] Sent: Wednesday, August 21, 2002 1:53 PM To: Struts Users Mailing List; [EMAIL PROTECTED] Subject: RE: Container-managed authentication not possible That

RE: Container-managed authentication not possible

2002-08-21 Thread Brandon Goodin
day, August 21, 2002 2:46 PM To: 'Struts Users Mailing List' Subject: RE: Container-managed authentication not possible You may want to take a look at the SecurityFilter project on SourceForge.net by Max Cooper. Summary form site: "SecurityFilter is a Java Ser

RE: Container-managed authentication not possible

2002-08-21 Thread Todd G. Nist
- From: Elderclei R Reami [mailto:[EMAIL PROTECTED]] Sent: Wednesday, August 21, 2002 3:44 PM To: [EMAIL PROTECTED] Subject: Container-managed authentication not possible Hi Friends, It's been a month developing in struts, and the party's been pretty good. I'm just finishing my f

RE: Container-managed authentication not possible

2002-08-21 Thread Brandon Goodin
]] Sent: Wednesday, August 21, 2002 3:44 PM To: [EMAIL PROTECTED] Subject: Container-managed authentication not possible Hi Friends, It's been a month developing in struts, and the party's been pretty good. I'm just finishing my first application (30 jsps, actions, and so o

Container-managed authentication not possible

2002-08-21 Thread Elderclei R Reami
Hi Friends, It's been a month developing in struts, and the party's been pretty good. I'm just finishing my first application (30 jsps, actions, and so on), and now I'm including some security in it. I'm in trouble regarding authentication, because my client's ISP does not let me change serv