struts-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Michael" <>
Subject RE : Specifying roles for actions
Date Fri, 23 Aug 2002 07:30:48 GMT
> FYI, this particular issue was the hardest thing about implementing
> based login in Tomcat.

> The nice thing about using a Filter to implement application-managed
> security (the way that SecurityFilter does it) is you don't have to
> Struts, or your Struts-based application, to use it.  Just put them
> together and configure them both.  On the other hand, there's no
reason to
> limit the availability of SecurityFilter to only those users smart
> to adopt Struts :-) -- it is generally useful.

But Craig, do you have any ideas about how Struts can redirect a user to
the login page?  For now do you recommend not assigning roles to actions
in the struts_config.xml?


To unsubscribe, e-mail:   <>
For additional commands, e-mail: <>

View raw message