Josh Holtzman wrote:
Module 2 obviously needs to be secure. To secure Module 2 I intend to build
2 measures into take the following steps: a) Before any action is executed
check that the user is logged in by looking for a "User" object in the
session. b) check that all connections are via the https protocol. In the
event that either of these checks fail, the user is redirected to an error
page.
Josh, this would appear to be a good place to use a ServletFilter.
Since your checks are for Module 2 it is a simple mapping for the
filter. Also, the two checks you described do not rely on Struts itself.
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
