struts-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Aladin Alaily <str...@aladin.ca>
Subject Re: Fw: [HELP] How to restrict access to certain mapping action ???
Date Thu, 19 May 2005 02:49:22 GMT
Hi Pham,

I think this was mentioned earlier.  There are two things you can do:

1) Use a filter with a url-map to your action

2) Use security constraints

Aladin



Pham Anh Tuan wrote:
> 
> Hi all,
> 
> This is the second time I post this message for help :(.
> 
> I don't know how to restrict access to certain mapping action?
> 
> Ex:
> I have action: /user/myaction.do
> and I don't want user directly access to above action.
> 
> Could I use web.xml to solve this problem.
> 
> something like:
> 
> <security-constraint>
> 
> <web-resource-collection>
> 
> <web-resource-name>
> 
> Restrict access to JSP pages
> 
> </web-resource-name>
> 
> <url-pattern>*.jsp</url-pattern>
> 
> </web-resource-collection>
> 
> <auth-constraint>
> 
> <description>
> 
> With no roles defined, no access granted
> 
> </description>
> 
> </auth-constraint>
> 
> </security-constraint>
> 
> Thanks for ur reading.
> 
> Anh Tuan
> 
> 
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
> For additional commands, e-mail: user-help@struts.apache.org
> 
> 
> 
> 


---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
For additional commands, e-mail: user-help@struts.apache.org


Mime
View raw message