struts-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Joe Germuska" <>
Subject Re: [S2] User authentication best practice (2nd time...)
Date Wed, 31 Jan 2007 20:22:20 GMT
On 1/31/07, Sébastien LABEY <> wrote:
> Hi all (sorry for the previous unterminated mail),
> I would like to know if S2 provides a solution to manage user
> authentication.

In short, no.  S2 has a RolesInterceptor which allows you to specify that
users in certain roles are allowed or disallowed from proceeding to the
action invocation.  This uses HttpServletRequest's isUserInRole method, so
it leverages any authentication system which can be tested through that.

Anything more would be hard to find the sweet spot for the right number of

If someone had the right idea, perhaps someone could leverage the plugin
framework to provide support for authentication.


Joe Germuska *

"The truth is that we learned from João forever to be out of tune."
-- Caetano Veloso

  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message