Martin Cooper wrote:
I did find some discussions by Craig on this, Martin, but nothing really meeting what you are talking about. Maybe someone else has an inkling where that is? I found the following:If you check the mailing list archives, you will find a much more eloquent discourse on why Struts should not support access control than I can provide, written by Craig some time ago.
The basic reasoning is that there are almost as many solutions to the problem as there are web applications in existence today. These range from those entirely external to the web app to those completely homegrown and tightly integrated with the web app. If we were to decide to add something to Struts, whatever we added would work for some small subset of applications and be irrelevant for the rest.
-- Martin Cooper
http://marc.theaimsgroup.com/?l=struts-user&m=105725928509122&w=2 http://marc.theaimsgroup.com/?l=struts-user&m=104200796225402&w=2 http://marc.theaimsgroup.com/?l=struts-user&m=102374509613877&w=2
For myself, I would not be discouraged for the reasons you cite. Those reasons in fact would encourage me. If there are so many attempts out there to deal with this, that sounds like a scream for a killer design pattern that has not yet emerged. I love those challenges. I am just finishing an upload app that is related to that sort of thing. This sort of thing need not, of course, actually go into the Struts framework itself. I wonder if there is a formal way to institute extensions for Struts not unlike we see with Java.
Michael McGrady
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
