:- There are decent forums at manning.com that might be a better place to put :- this note -- I know the authors read the forums there.
Well I did try posting to the authors blog on the Manning site but the post was thrown out because of the XML ... >> I'm not one of the authors, but I helped... >> >> The example in the book doesn't work the way that typical container >> managed authentication / authorization worked. I do understand that the example is there to provide an example of an interceptor and is not really intended to be an industrial strength security solution. I also understand that once validated any secure action can be accessed because the required token (User, Account whatever) is on the session. It just sounded like the Login action could be used regardless of initial Action Wouldn't it be great to have the redirect resultType parameterised in some way so that the target could be set depending on which action was selected ... Anyway Thanks for taking the time to reply lyallex --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]