You can also use a filter and/or container-based authentication if you
have a compliant container.
I would say that's the best method.
Carlos Sánchez <[EMAIL PROTECTED]>
10/08/2003 04:31 PM
Please respond to "Struts Users Mailing List"
To: "'Struts Users Mailing List'" <[EMAIL PROTECTED]>
cc:
Subject: RE: Struts and user-authentication
For the second you can add a bean to the session object with user
information after successful login and access it in each page
> -----Mensaje original-----
> De: Ilja [mailto:[EMAIL PROTECTED]
> Enviado el: miércoles, 08 de octubre de 2003 19:13
> Para: [EMAIL PROTECTED]
> Asunto: Re: Struts and user-authentication
>
>
> Anyone?
>
> On Mon, 06 Oct 2003 17:36:24 +0200, "Ilja" <[EMAIL PROTECTED]>
> said:
> > Thanks! Very helpfull, but still some questions:
> >
> > How can you programmaticly make use of struts-config.xml? Now the
> > loginpage is hardcoded:
> >
> > String loginPage = request.getContextPath()+"/logon.do";
> >
> > Can't you make it more generic so that it uses the
> config-file to look
> > it up?
> >
> > Secondly: How can you display userinformation in a jsp-page
> when you
> > have your own authentication-system? I probably have to
> write my own
> > taglibs right?
> >
> > Ilja
> >
> > On Mon, 6 Oct 2003 18:10:56 +0530, "Deepak" <[EMAIL PROTECTED]>
> > said:
> > > Try this :
> http://www.theserverside.com/resources/article.jsp?l=JAAS
> > >
> > > ----- Original Message -----
> > > From: "Ilja" <[EMAIL PROTECTED]>
> > > To: <[EMAIL PROTECTED]>
> > > Sent: Monday, October 06, 2003 6:00 PM
> > > Subject: Struts and user-authentication
> > >
> > >
> > > > Is there any good example on how to incorporate strict
> > > > user-authentication with Struts?
> > > >
> > > > Currently I'm working on a way to implement user-authentication
> > > > with OSUser (www.opensymphony.com/osuser) and hibernate
> > > > (www.hibernate.org)
> > > >
> > > > What's the best way to implement user-security? Where
> should the
> > > > authentication method be put in? In every action? Is it
> possible
> > > > to create one generic class that authorizes a user and
> sends it to
> > > > the appropiate page (either the page he requested, an
> error or a
> > > > login-page) without coding it on every single action page?
> > > >
> > > > Thanks,
> > > >
> > > > Ilja
> > > >
> > > >
> ------------------------------------------------------------------
> > > > ---
> > > > To unsubscribe, e-mail:
> [EMAIL PROTECTED]
> > > > For additional commands, e-mail:
> [EMAIL PROTECTED]
> > >
> > >
> > >
> --------------------------------------------------------------------
> > > -
> > > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > > For additional commands, e-mail:
> [EMAIL PROTECTED]
> > >
> > >
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
= = = = = = = = = == = = = = = == = = = = = = = == = = = = = == = = = = This
transmittal and any attachments may contain confidential, privileged or sensitive
information and is solely for the use of the intended recipient. If you are not
intended recipient, you are hereby notified that you have received this transmittal
and any such attachments in error and any review, dissemination, distribution or
copying thereof is strictly prohibited. If you have received this transmittal and any
attachments in error please notify the sender and immediately destroy the message and
all its attachments. Any opinions herein expressed may be those of the author and not
necessarily of Mizuho Corporate Bank, Ltd (the "Bank"). The Bank accepts no
responsibility for the accuracy or completeness of any information herein contained.
= = = = = = = = = == = = = = = == = = = = = = = == = = = = = == = = = =
