Thanks Antonio, Actually in my application I didn't allow the user to expose any jsp using the action. I used this techniques for a certain type of pages using a specific pattern in the generic action.
So, I think it is more secure. Thanks. Ahmed Hashim On 4/14/06, Antonio Petrelli <[EMAIL PROTECTED]> wrote: > > Ahmed Hashim ha scritto: > > I solved the problem > > > > I think you are right, I can not call any tiles definition directly > without > > calling an action > > > > I made a generic action definition to view my pages > > > > check the solution in my blog > > > > http://www.egjug.org/struts_action_foward_to_Tiles > > > > > > Ahmed Hashim > > > > Uh at a first look, I did not like your solution, because I thought that > it could break security, that it is just like exposing JSP pages without > passing through an action. But then I thought "hey wait a moment, if I > want to expose a definition, I NEED to call it 'viewSomething.page' and > not 'blahblah'", so security is preserved if the programmer knows what > to do. > Congratulations, I really liked your solution! > Ciao > Antonio > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > -- In Life, it doesn't matter who you are, but whether someone appreciates you for what you are, accepts you and loves you unconditionally. A Real Friend ( Friendship ) is one who walks in when the rest of the world walks away.
