struts-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Jeromy Evans <jeromy.ev...@blueskyminds.com.au>
Subject Re: My struts1 app with sslext used. How to upgrade it to struts2?
Date Mon, 02 Jul 2007 23:12:42 GMT
There is no standard convention in S2 yet AFAIK, but this is what you 
need to do:

1. setup your web.xml security constraints
2. split your s2 actions into packages, with a namespace matching the 
url for the security constraint for the protected pages
3. Avoid hardcoding the URL's in your jsp. All the S2 tags respect the 
existing protocol and port.
4. if you need redirect, implement a interceptor to do do this.

Item 4 is not essential unless you're sending request/post parameters 
across protocols (sslext includes this functionality).  An interceptor 
is not shipped with S2 yet,  however Shahak Nageil contributed his 
version on this mailing list in early June with the subject "SSL 
Interceptor".

regards,
  Jeromy Evans

peter lee wrote:
> Hello,
>    
>   Does anyone use http switch in struts2?
>   It seems nobody answers my question.
>    
>   please help.
>    
>   Thanks,
>   peter c.
>
> peter lee <pete15002@yahoo.com> wrote:
>   Hello,
>
> My struts1 app is using sslext for https switch. How to upgrade it to struts2?
>
> Thanks,
> peter
>
>
> ---------------------------------
> Building a website is a piece of cake. 
> Yahoo! Small Business gives you all the tools to get online.
>
>        
> ---------------------------------
> Ready for the edge of your seat? Check out tonight's top picks on Yahoo! TV. 
>   
> ------------------------------------------------------------------------
>
> No virus found in this incoming message.
> Checked by AVG Free Edition. 
> Version: 7.5.476 / Virus Database: 269.9.14/883 - Release Date: 1/07/2007 12:19 PM
>   


---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
For additional commands, e-mail: user-help@struts.apache.org


Mime
View raw message