allow such
login
requests.
http://securityfilter.sourceforge.net/
-Max
- Original Message -
From: Scott Barr [EMAIL PROTECTED]
To: Struts Users Mailing List [EMAIL PROTECTED]
Sent: Wednesday, March 19, 2003 4:12 PM
Subject: Re: j_security_check
Hi Ronan
You'll get this when you go directly
have changed when setting it up for your app might get you to a
solution the fastest.
-Max
- Original Message -
From: ronanoc [EMAIL PROTECTED]
To: Struts Users Mailing List [EMAIL PROTECTED]
Sent: Monday, March 31, 2003 5:38 AM
Subject: Re: j_security_check
So I have got the demo
Hi Ronan
You'll get this when you go directly to the page for the user to login.
Instead, setup a resource that is protected by Container Managed
Security eg. /userHome.do, which will then take you to your login page.
Once login is successful, you will be fowarded on to /userHome.do
Once you've
Message -
From: Scott Barr [EMAIL PROTECTED]
To: Struts Users Mailing List [EMAIL PROTECTED]
Sent: Wednesday, March 19, 2003 4:12 PM
Subject: Re: j_security_check
Hi Ronan
You'll get this when you go directly to the page for the user to login.
Instead, setup a resource that is protected
, 2003 4:12 PM
Subject: Re: j_security_check
Hi Ronan
You'll get this when you go directly to the page for the user to login.
Instead, setup a resource that is protected by Container Managed
Security eg. /userHome.do, which will then take you to your login page.
Once login
2003. január 31. 01:06 dátummal MarwanSalam ezt írtad:
Hi,
I am trying to use j_security_check Servlet to authenticate users
from a login.jsp. However, if I do this, I will not be able to take
advantage of LogonAction class where I need to set certain session
and request attributes. If I
Hello,
What I have done is like:
1) I forward the user to ActionClass after the LoginPage (not the default
one but to the coustom one).
2) In this action class I set all the parameters that I require.
3) After this I forward the user to the j_security_check part.
- Original Message -
From:
Hi
I think the solution to this is to make LoginAction.do a protected resource.
Any attempt to access LoginAction.do will cause your login page to be displayed and
following sucessful authentication,
you can complete the action in LoginAction.do - including forwards to your chosen page.
db
I usually create an ActionFilter that maps to the same url-pattern as my
Action class. You can then set a userForm or token in the session if it's
null, and that way you'll know if they just logged in or not. Seems to work
pretty well for me.
Here's an example:
http://tinyurl.com/55an
HTH,
Dont use struts html:something tags inside your form. bean:message and
such are ok. Otherwise, it thinks you want to use an ActionForm.
Mike
- Original Message -
From: Darren Hill [EMAIL PROTECTED]
To: 'Struts Users Mailing List' [EMAIL PROTECTED]
Sent: Monday, November 18, 2002 2:21 PM
Wow.
I had this working awesome ... now I get a
HTTP ERROR: 404 Not Found
RequestURI=/CMWeb/WEB-INF/pages/j_security_check
This doesn't look right.
Couple of possibilities I can think of.
1. Doublecheck that you have form based authentication
enabled in your web.xml
2. Try changing
2002-11-18, h keltezssel Darren Hill ezt rta:
Wow.
I had this working awesome ... now I get a
I never had this phenomenon before however I use extension mapping so
j_security_check never matches *.do.
Tib
--
To unsubscribe, e-mail: mailto:[EMAIL PROTECTED]
For additional commands,
Darren,
Try completely cleaning your login form of Struts tags. When you get that to
work, add them back slowly to see which ones are giving the problem.
I've found that I can put a login form using j_security_check inside a Struts
tile, but using Struts tags caused problems for me of the sort
:48 PM
To: Struts Users Mailing List
Subject: RE: j_security_check
Darren,
Try completely cleaning your login form of Struts tags. When you get that
to
work, add them back slowly to see which ones are giving the problem.
I've found that I can put a login form using j_security_check inside
JAAS is not relevant if you're using container-managed security. You'll
need to set up users in whatever user database your container (WebLogic in
your case) provides. Struts also has nothing to do with this -- although
you can use role information with tags like logic:present or the roles
are now going full steam ahead with struts!
thanks,
Mike Lee
- Original Message -
From: Craig R. McClanahan [EMAIL PROTECTED]
To: Struts Users Mailing List [EMAIL PROTECTED]
Sent: Monday, August 26, 2002 12:52 PM
Subject: Re: j_security_check, jaas and weblogic 6.1
JAAS is not relevant
On Mon, 26 Aug 2002, Michael Lee wrote:
Date: Mon, 26 Aug 2002 14:29:44 -0400
From: Michael Lee [EMAIL PROTECTED]
Reply-To: Struts Users Mailing List [EMAIL PROTECTED]
To: Struts Users Mailing List [EMAIL PROTECTED]
Subject: Re: j_security_check, jaas and weblogic 6.1
Thank you! You
1. login successfully using 'j_security_check';
2. the next request happens to be to an unsecured url (e.g.
/do/frontpage (with no restrictions in web.xml) --
DispatchServlet -- user.frontpage (tiles)) ;
3. the request methods 'getUserPrincipal()', 'isUserInRole()'
and 'getRemoteUser()'
I'm on the phone with IBM at this moment. The scoop I got from searching the
WEbsphere newsgroup was that 4.02 broke the forwarding for form-based
security. That's what I was experiencing, and the message said that the fix
was only available by calling IBM support.
Supposedly efix PQ56667 fixes
On Thu, 15 Mar 2001, Richard Yumul wrote:
Is there a way to define the authenticating class within the WAR context? I
like the way SimpleRealm JDBCRealm work, automatically protecting every
resource matching a regex.
However if I need a custom realm, I'd really prefer to have it be
20 matches
Mail list logo