Re: [S2] User authentication best practice (2nd time...)

2007-01-31 Thread Sébastien LABEY
Thank you very much, I will have a look a this... Sebastien On 2/1/07, Ron Chan <[EMAIL PROTECTED]> wrote: http://www.acegisecurity.org/ is a popular os generic security layer http://appfuse.org/ is a "kickstart" app that has acegi, mvc, orm layer all pre-configured with a simple user manage

Re: [S2] User authentication best practice (2nd time...)

2007-01-31 Thread Ron Chan
http://www.acegisecurity.org/ is a popular os generic security layer http://appfuse.org/ is a "kickstart" app that has acegi, mvc, orm layer all pre-configured with a simple user management system; S2 is one of its many mvc options even if you don't use appfuse it is a good source to pick up ide

Re: [S2] User authentication best practice (2nd time...)

2007-01-31 Thread Sébastien LABEY
to:[EMAIL PROTECTED] > Sent: Wednesday, January 31, 2007 8:57 PM > To: Struts Users Mailing List > Subject: Re: [S2] User authentication best practice (2nd time...) > > Thanks for your answer. > Maybe I'm not very clear (sorry for my english). Let's imagine the > following &g

RE: [S2] User authentication best practice (2nd time...)

2007-01-31 Thread Thorsten Schäfer
uts Users Mailing List > Subject: Re: [S2] User authentication best practice (2nd time...) > > Thanks for your answer. > Maybe I'm not very clear (sorry for my english). Let's imagine the > following > request to access the page to update the user informations : >

Re: [S2] User authentication best practice (2nd time...)

2007-01-31 Thread Joe Germuska
On 1/31/07, Sébastien LABEY <[EMAIL PROTECTED]> wrote: Hi all (sorry for the previous unterminated mail), I would like to know if S2 provides a solution to manage user authentication. In short, no. S2 has a RolesInterceptor which allows you to specify that users in certain roles are allowed

Re: [S2] User authentication best practice (2nd time...)

2007-01-31 Thread Sébastien LABEY
IL PROTECTED] > Sent: Wednesday, January 31, 2007 8:22 PM > To: Struts mailing list > Subject: [S2] User authentication best practice (2nd time...) > > Hi all (sorry for the previous unterminated mail), > > I would like to know if S2 provides a solution to manage user > aut

RE: [S2] User authentication best practice (2nd time...)

2007-01-31 Thread Thorsten Schäfer
x27;d think that it's the same in S2. Cheers, Thorsten > -Original Message- > From: Sébastien LABEY [mailto:[EMAIL PROTECTED] > Sent: Wednesday, January 31, 2007 8:22 PM > To: Struts mailing list > Subject: [S2] User authentication best practice (2nd time...) > >

[S2] User authentication best practice (2nd time...)

2007-01-31 Thread Sébastien LABEY
Hi all (sorry for the previous unterminated mail), I would like to know if S2 provides a solution to manage user authentication. I also would like to know if someone could lead me to best practice for user creation / authentication to a web application. I'm worried about security after the user h