struts-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Paul Thomas <>
Subject Re: Webapp Security?
Date Thu, 03 Jul 2003 11:23:23 GMT

On 02/07/2003 18:53 David Erickson wrote:
> Is it based on using security restraints and having all your users set
> into
> groups in the tomcat-users.xml file?  If so our problem is we don't want
> to
> have users based into groups but want to give permissions to users
> individually to many different things.. and we want to store our users in
> a
> database rather than tomcat's xml file.. if I am mistaken on how this
> works
> please correct me =)  (I havn't actually looked at it, I've just looked
> at
> tomcat's security restraint stuff before)

Just set up a JDBC realm for your context and use roles. A role can be as 
fine or coarse grained as you like. Then just write an admin app which 
allows you assign roles to users. It's easy.

Paul Thomas
| Thomas Micro Systems Limited | Software Solutions for the Smaller 
Business |
| Computer Consultants         |   |

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message