On Fri, 2002-07-12 at 13:32, [EMAIL PROTECTED] wrote:
> Where and how does security come in?
The taglib simply calls the bridge with the provided parameters (from
the form)
>From the mmbase-taglib.xml:
<attribute>
<name>loginpage</name>
<required>false</required>
<rtexprvalue>true</rtexprvalue>
<refercontext>true</refercontext>
<info>
Page that ask the user for login information. This page should
link page to the page which is supplied in the reference parameter.
The login page itselve should have a parameter 'command' with
value 'login', 'method' with the method which is wanted.
Additional parameters will be passed to the underlying security
implementation.
A simple login page could contain the following jsp-code:
<![CDATA[
<%@ taglib uri="http://www.mmbase.org/mmbase-taglib-1.0";
prefix="mm"%>
<html>
<mm:import externid="reference" required="true" />
<form method="post" action="<mm:url page="$reference" />" >
<input type="hidden" name="command" value="login">
<input type="hidden" name="cloud" value="mmbase">
<input type="hidden" name="method" value="name/password">
<input type="text" name="username" value="">
<br />
<input type="password" name="password" value="">
<br />
<input type="submit" name="Login" value="login">
</form>
</html>
]]>
When a user is logged in, a call in that page, with parameter
'command' and value 'attribute' causes the user to be logged out.
</info>
</attribute>
--
Eduard Witteveen Systeem Ontwikkelaar
NOS Internet, Gateway C Kamer 107
+31(0)356772910 http://www.omroep.nl/
Sed quis custodiet ipsos custodes? : The sixth Satire from Juvenal
