RE: security framework!!!

InteresTing discussion.Is there more website links on the same Thanks! Craig R. McClanahan [EMAIL PROTECTED] wrote: (Jumping in late, and trying to catch up on several hundred email messages in my STRUTS-USER folder, but better late than never ...) Quoting David Friedman : Adam, With

RE: security framework!!! (Addendum to my previous post)

Hi, Has anyone tried filters framework (filter tag in web.xml) in struts for role based access to webpages in a enterprise wide application...deployed in weblogic...we tried this and seems each sub-application needs a differenet, its own web.xml and a single integrated web.xml.. Any

RE: security framework!!!

(Jumping in late, and trying to catch up on several hundred email messages in my STRUTS-USER folder, but better late than never ...) Quoting David Friedman [EMAIL PROTECTED]: Adam, With my structure, I might have to become a particular reseller, then flip into a customer of his/hers, then

Re: security framework!!!

(to all) for any constructive suggestions, David -Original Message- From: Adam Hardy [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 17, 2004 6:51 PM To: Struts Users Mailing List Subject: Re: security framework!!! I don't see your requirement for replacing the principal when the admin wants

Re: security framework!!!

) for any constructive suggestions, David -Original Message- From: Adam Hardy [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 17, 2004 6:51 PM To: Struts Users Mailing List Subject: Re: security framework!!! I don't see your requirement for replacing the principal when the admin wants

Re: security framework!!!

- Original Message - From: David Friedman [EMAIL PROTECTED] To: Struts Users Mailing List [EMAIL PROTECTED] Sent: Wednesday, March 17, 2004 5:48 PM Subject: RE: security framework!!! Adam, With my structure, I might have to become a particular reseller, then flip into a customer of his/hers

RE: security framework!!!

they do can be seen by no one else (though a manager might need to approve certain types of request). Regards, David -Original Message- From: Adam Hardy [mailto:[EMAIL PROTECTED] Sent: Monday, March 15, 2004 10:28 AM To: Struts Users Mailing List Subject: Re: security framework!!! On 03

Re: security framework!!!

-Original Message- From: Adam Hardy [mailto:[EMAIL PROTECTED] Sent: Monday, March 15, 2004 10:28 AM To: Struts Users Mailing List Subject: Re: security framework!!! On 03/15/2004 03:00 PM David Friedman wrote: I should have explained this a bit better. Each level is like a company

RE: security framework!!!

-Original Message- From: Adam Hardy [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 17, 2004 6:51 PM To: Struts Users Mailing List Subject: Re: security framework!!! I don't see your requirement for replacing the principal when the admin wants to 'become' someone else. What are you

Re: security framework!!!

Message- From: Jason Lea [mailto:[EMAIL PROTECTED] Sent: Sunday, March 14, 2004 6:49 PM To: Struts Users Mailing List Subject: Re: security framework!!! David Friedman wrote: I've also been looking into security frameworks and the only solutions I've really found are: 1. Standard (container

RE: security framework!!!

into it to ensure good http/https lock-downs. Do you have any hints/suggestions for a better methodology/way? Regards, David -Original Message- From: Adam Hardy [mailto:[EMAIL PROTECTED] Sent: Monday, March 15, 2004 4:25 AM To: Struts Users Mailing List Subject: Re: security framework!!! Right, I

Re: security framework!!!

: Adam Hardy [mailto:[EMAIL PROTECTED] Sent: Monday, March 15, 2004 4:25 AM To: Struts Users Mailing List Subject: Re: security framework!!! Right, I get it. So you not only want the higher level user to take on the lower level user's role, you want them to have their complete ID or username etc

RE: security framework!!!

in struts... http://www.onjava.com/pub/a/onjava/2004/02/18/strutssecurity.html God Bless, Benz Lim -Original Message- From: David Friedman [mailto:[EMAIL PROTECTED] Sent: Monday, March 15, 2004 10:00 PM To: Struts Users Mailing List Subject: RE: security framework!!! Adam, I should have

Re: security framework!!!

On 03/13/2004 05:48 PM David Friedman wrote: My bigger problem is my scenario, which no one supports. I'd like to allow manager accounts to become one of if it's sub-accounts. My system would support at least 5 levels where 4 could 'drill down' and back up again: admin, reseller, client,

RE: security framework!!!

: Sunday, March 14, 2004 5:21 AM To: Struts Users Mailing List Subject: Re: security framework!!! On 03/13/2004 05:48 PM David Friedman wrote: My bigger problem is my scenario, which no one supports. I'd like to allow manager accounts to become one of if it's sub-accounts. My system would support

Re: security framework!!!

14, 2004 5:21 AM To: Struts Users Mailing List Subject: Re: security framework!!! On 03/13/2004 05:48 PM David Friedman wrote: My bigger problem is my scenario, which no one supports. I'd like to allow manager accounts to become one of if it's sub-accounts. My system would support at least 5

Re: security framework!!!

David Friedman wrote: I've also been looking into security frameworks and the only solutions I've really found are: 1. Standard (container) JAAS 2. SecurityFilter http://securityfilter.sourceforge.net 3. Pow2ACL http://pow2acl.sourceforge.net/ I was hoping, at some point, to use an SSL switching

RE: security framework!!!

-Original Message- From: Adam Hardy [mailto:[EMAIL PROTECTED] Sent: Sunday, March 14, 2004 6:28 PM To: Struts Users Mailing List Subject: Re: security framework!!! You mean you don't want to force the user to log out and back in again? I would have thought that was a reasonable demand since

RE: security framework!!!

the admin), then become a client, then become a manager then become an employee to look at or fix something for them. Regards, David -Original Message- From: Jason Lea [mailto:[EMAIL PROTECTED] Sent: Sunday, March 14, 2004 6:49 PM To: Struts Users Mailing List Subject: Re: security framework

RE: security framework!!!

http://sourceforge.net/projects/securityfilter/ emulates container managed security. robert -Original Message- From: Mailing List [mailto:[EMAIL PROTECTED] Sent: Saturday, March 13, 2004 6:19 AM To: [EMAIL PROTECTED] Subject: security framework!!! I'm developing a web

RE: security framework!!!

I've also been looking into security frameworks and the only solutions I've really found are: 1. Standard (container) JAAS 2. SecurityFilter http://securityfilter.sourceforge.net 3. Pow2ACL http://pow2acl.sourceforge.net/ I was hoping, at some point, to use an SSL switching feature such as

RE: security framework!!!

Oracle provides Single Sign On with OID - no extra work required. -Original Message- From: David Friedman [mailto:[EMAIL PROTECTED] Sent: Saturday, March 13, 2004 8:49 AM To: Struts Users Mailing List Subject: RE: security framework!!! I've also been looking into security frameworks

RE: security framework!!!

14, 2004 1:08 AM To: 'Struts Users Mailing List' Subject: RE: security framework!!! Oracle provides Single Sign On with OID - no extra work required. -Original Message- From: David Friedman [mailto:[EMAIL PROTECTED] Sent: Saturday, March 13, 2004 8:49 AM To: Struts Users Mailing List