Sanjaya Kumar Patel wrote:
I saw ACEGI a bit and then am thinking to first try writing own
interceptor - basically extending the suggestion in the book Apache
Struts 2 Web 2.0 Projects. Will post the code once successful.
For security this is pretty much always a mistake. You don't want bugs
DN ACEGI^H^H^H^H^HSpring Security.
Sanjaya, Spring Security will remember which URL user was trying to access
before the login and will replay that URL after successful login .
However, I'm not aware of Spring Security ability to replay POST data from
a form.
Dale, Harun, Thanks a lot
Sanjaya Kumar Patel wrote:
Curious to know what is the common practice. Would like to hear if
people are using some established libraries or pattern etc.
ACEGI^H^H^H^H^HSpring Security.
-Dale
-
To unsubscribe, e-mail:
On Today at 1:14pm, DN=Dale Newfield d...@newfield.org wrote:
DN Sanjaya Kumar Patel wrote:
DN Curious to know what is the common practice. Would like to hear if
DN people are using some established libraries or pattern etc.
DN
DN ACEGI^H^H^H^H^HSpring Security.
DN
DN -Dale
DN
+1.
Sanjaya,
Hi Sanjay,
when intercepting action for the first time (no logged user),
You can save submited data along with request uri and put it into
session/database
then after login (inside login action), check if these informations
are present in sesion/database
and forward to desired action with all the
Hi Pawel, Thanks for the insight. I would give a try.
Being a common scenario, is there any existing work already present for
this, so that I don't have to reinvent the wheel? I guess there should
already be some established library / code sample which people follow.
What do people normally do?
to get Login page while submitting a data form
Hi Pawel, Thanks for the insight. I would give a try.
Being a common scenario, is there any existing work already
present for
this, so that I don't have to reinvent the wheel? I guess there should
already be some established library / code
If a form requires authentication, don't render it until the
user is logged in.
If you are worried about the user's session timing out before
the form is submitted, implement some sort of javascript timer
that (after a period equal to a session timeout), pops up a
modal login form.
8 matches
Mail list logo