struts-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Michael" <mich...@idtect.com>
Subject RE : Specifying roles for actions
Date Fri, 23 Aug 2002 07:30:48 GMT
> FYI, this particular issue was the hardest thing about implementing
form
> based login in Tomcat.

> The nice thing about using a Filter to implement application-managed
> security (the way that SecurityFilter does it) is you don't have to
modify
> Struts, or your Struts-based application, to use it.  Just put them
> together and configure them both.  On the other hand, there's no
reason to
> limit the availability of SecurityFilter to only those users smart
enough
> to adopt Struts :-) -- it is generally useful.

But Craig, do you have any ideas about how Struts can redirect a user to
the login page?  For now do you recommend not assigning roles to actions
in the struts_config.xml?

Michael


--
To unsubscribe, e-mail:   <mailto:struts-user-unsubscribe@jakarta.apache.org>
For additional commands, e-mail: <mailto:struts-user-help@jakarta.apache.org>


Mime
View raw message