If you made roles for each region, you could use them in that way too,
however I think that would be too cumbersome.
A servlet filter is also a possibility, but also not optimal I think.
I would make the implementation depend on the data model rather than the
authorisation scheme.
For instan
My question is similar. I use container-managed
"role"-based security checking. I put "role" property
in Action Mapping and use isUserInRole in my JSPs.
For example, John can view the sales reports if he has
the "sales role". Now, I want to further restrict John
to view the sales reports in is "
On 10/22/2003 10:21 PM Ramadoss Chinnakuzhandai wrote:
apologize for repeating my question againI'm newbie to Struts and hv basic doubt in security level implemented using Struts framework.
we are aware that in normal J2EE application we are authenticating user based on user access level spe
I just went through a whole slew of options, and in the end settled on
letting tomcat do form based authentication. It works. Good
instructions on it in the tomcat docs.
Playing with the app directory structure to get a good fit took a little
tweaking, I ended up moving everything around a bun
Subject: Re: User Authentication
From: "David Bolsover" <[EMAIL PROTECTED]>
===
Craig
Thanks for the lead - I shall certainly follow up - although I have now
solved the problem for my present project
regards
David Bolsover
"Craig R. McClanahan" <[EMAIL PROT
> That's the part I was talking about. Tomcat and Resin aren't
> too bad, but I never have found an example of container
> managed security with Websphere.
WebSphere uses its CustomRegistry interface for the database
access layer of container managed security.
Please see
http://www-3.ibm.com/s
On Wed, 12 Jun 2002, Struts Newsgroup wrote:
> Date: Wed, 12 Jun 2002 05:10:01 -0700
> From: Struts Newsgroup <[EMAIL PROTECTED]>
> Reply-To: Struts Users Mailing List <[EMAIL PROTECTED]>
> To: [EMAIL PROTECTED]
> Subject: Re: User Authentication
>
> Subjec
Subject: Re: User Authentication
From: "David Bolsover" <[EMAIL PROTECTED]>
===
Hi all
I am pleased that my posting provoked so may interesting responses; I was
particularly intrigued by the reference to Open Symphony - OSUser module -
thanks to Kevin Palfreyman for that. S
On Mon, 10 Jun 2002, Craig R. McClanahan wrote:
> On 10 Jun 2002, Dave Weis wrote:
> > On Mon, 2002-06-10 at 13:56, Craig R. McClanahan wrote:
> > [snip]
> > > In general, I would recommend that apps be developed using container
> > > managed security capabilities -- for example, form-based login
> Container managed security constraints are *based* on roles - only users
> who possess particular roles are allowed to access the URL patterns
> defined in the corresponding web resource collection. Therefore, the
> underlying mechanisms the container uses to support container-managed
> securit
On Mon, 10 Jun 2002, Joseph Barefoot wrote:
> Date: Mon, 10 Jun 2002 13:38:30 -0700
> From: Joseph Barefoot <[EMAIL PROTECTED]>
> Reply-To: Struts Users Mailing List <[EMAIL PROTECTED]>,
> [EMAIL PROTECTED]
> To: Struts Users Mailing List <[EMAIL P
On Mon, 10 Jun 2002 [EMAIL PROTECTED] wrote:
> Date: Mon, 10 Jun 2002 15:36:43 -0400
> From: [EMAIL PROTECTED]
> Reply-To: Struts Users Mailing List <[EMAIL PROTECTED]>
> To: Struts Users Mailing List <[EMAIL PROTECTED]>
> Subject: Re: User Authentication
>
>
On 10 Jun 2002, Dave Weis wrote:
> Date: 10 Jun 2002 14:00:44 -0500
> From: Dave Weis <[EMAIL PROTECTED]>
> Reply-To: Struts Users Mailing List <[EMAIL PROTECTED]>
> To: Struts Users Mailing List <[EMAIL PROTECTED]>
> Subject: Re: User Authentication
>
&g
At 11:56 AM 6/10/2002 -0700, you wrote:
>On Mon, 10 Jun 2002 [EMAIL PROTECTED] wrote:
>I can share a couple of useful insights on this topic.
>
>Fundamentally, there are two major approaches that you can take when your
>application requires user login and management:
>
>- Container-managed securit
he user is logged in.
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
> Sent: Monday, June 10, 2002 12:37 PM
> To: Struts Users Mailing List
> Subject: Re: User Authentication
>
>
>
>
>
>
> > >
> > > I&#
> >
> > I've wondered why Struts provides no specific User Management tools.
I'd
> > almost expect to see a user.tld tag lib and struts tags such as:
> >
Craig,
Thanks for responding. I figured the answer was pretty much what you had
indicated.
I also appreciate the exception cases you iden
On Mon, 2002-06-10 at 13:56, Craig R. McClanahan wrote:
[snip]
> In general, I would recommend that apps be developed using container
> managed security capabilities -- for example, form-based login defined in
> the Servlet spec (http://java.sun.com/products/servlet/download.html).
> Then, you c
On Mon, 10 Jun 2002 [EMAIL PROTECTED] wrote:
> Date: Mon, 10 Jun 2002 11:40:45 -0400
> From: [EMAIL PROTECTED]
> Reply-To: Struts Users Mailing List <[EMAIL PROTECTED]>
> To: Struts Users Mailing List <[EMAIL PROTECTED]>
> Subject: Re: User Authentication
>
>
;
<[EMAIL PROTECTED]>
To: "Struts Users Mailing List" <[EMAIL PROTECTED]>
cc: (bcc: Kevin Bedell/Systems/USHO/SunLife)
Subject: RE: User Authentication
I haven't actually used it, but would the Open Symphony - OSUser module
help here, even as a
: 10 June 2002 16:41
> To: Struts Users Mailing List
> Subject: Re: User Authentication
>
>
>
> I'd like to bring this up at a more general level.
>
> I've wondered why Struts provides no specific User Management
> tools. I'd
> almost expect to see a
@Basebeans.com)
To: [EMAIL PROTECTED]
cc: (bcc: Kevin Bedell/Systems/USHO/SunLife)
Subject: Re: User Authentication
Subject: Re: User Authentication
From: Torgeir Veimo <[EMAIL PROTECTED]>
===
David Bolsover wrote:
> Vic
>
> Thanks - you could well be right, my question may be
Subject: Re: User Authentication
From: Torgeir Veimo <[EMAIL PROTECTED]>
===
David Bolsover wrote:
> Vic
>
> Thanks - you could well be right, my question may be better directed to web
> container or JAAS.
> What I do know is that using the web xml .. ,
> .. fea
Subject: Re: User Authentication
From: "David Bolsover" <[EMAIL PROTECTED]>
===
Vic
Thanks - you could well be right, my question may be better directed to web
container or JAAS.
What I do know is that using the web xml .. ,
.. features is not sufficintly flexible for my needs
Subject: Re: User Authentication
From: "Vic C." <[EMAIL PROTECTED]>
===
This is web container or a JAAS question.
It is hard to say based on your e-mail if you already did it or you are
asking how.
Typically, after the Struts application is constructed, JAAS is added.
An
24 matches
Mail list logo
