Hi,
I m trying to secure different areas of a web site based on their security
roles and considering security features of JSDK 2.2. There are few
properties in deployment descriptors that can be used to define access of a
user based on its role. Thats fine but it looks like there is no standard
way of authenticating a user .. I think it would be nice to have a standard
interface that i can implement to authenticate a user ( using database for
exampple ) and then set the role of the user. What i want to say is that it
is not clear from the API that how isUserInRole() returns the proper value
??
I have seen resin implementation.They have their own authenticar class taht
i can implement to do the stuff. Does anybody know how this is implemented
in tomcat ??
Any light on this matter would really be appreicated ..
thanks ..
naveed
________________________________________________________________________
Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com
___________________________________________________________________________
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff SERVLET-INTEREST".
Archives: http://archives.java.sun.com/archives/servlet-interest.html
Resources: http://java.sun.com/products/servlet/external-resources.html
LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
