Aaron Evans <aaronmevans <at> yahoo.ca> writes: > > I have added struts and JSF applications to my jetspeed2 portal. > > What I have found is that once a user authenticates through the portal, > then the request.getPrincipal() and request.isUserInRole() methods work > as expected within my applications. > > However, any security constraints specified in the application's web.xml file > are *not* respected when the application is accessed through the portal, but > they are when you access the application directly. >
I have done further research and reading and I think my confusion was due to a lack of knowledge around the portlet specification. I will experiment with using the security-constraint and security-role elements in my portlet.xml. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
