a brief explanation for basic spring-security (only authentication)
configuration with struts:
Spring security is running as a filter in your web-app
(you need to make sure that it comes first before Struts).
For the filter-configuration take a look at (2.2.1):
http://static.springsource.org/spr
M. Rakowski,
Sorry for bothering again, How do I do that ? I searched for struts2 and
spring security integration but am not able to find any of the resources.
On Tue, Apr 17, 2012 at 11:21 PM, M. Rakowski wrote:
> Hey,
>
> i would definitely _discourage_ you from using JAAS.
>
> IMHO go with S
Hey,
i would definitely _discourage_ you from using JAAS.
IMHO go with Spring Security:
http://static.springsource.org/spring-security/site/
It is pretty easy to integrate in Struts and
provides everything you need for both authentication and authorization.
thank you :)
On Tue, Apr 17, 2012 at 9:21 PM, Chris Pratt wrote:
> Struts itself doesn't provide an Authentication & Authorization subsystem,
> but it will work well with Spring Security, Apache Shiro, or roll-your-own
> solutions.
> (*Chris*)
>
> On Tue, Apr 17, 2012 at 5:28 AM, Aravind Kumar
Struts itself doesn't provide an Authentication & Authorization subsystem,
but it will work well with Spring Security, Apache Shiro, or roll-your-own
solutions.
(*Chris*)
On Tue, Apr 17, 2012 at 5:28 AM, Aravind Kumar wrote:
> Hello,
>
> I have just started to venture into Struts2 and I'm havi
Thank you ! And Apache Shiro is it worth trying for authentication and
authorization ?
On Tue, Apr 17, 2012 at 6:37 PM, vEnkaTa mohAna rAo SriperumbUdUru <
mohanara...@gmail.com> wrote:
> http://www.javaranch.com/journal/2008/04/authentication-using-JAAS.html
>
>
> http://stackoverflow.com/questi
http://www.javaranch.com/journal/2008/04/authentication-using-JAAS.html
http://stackoverflow.com/questions/3649615/how-should-i-savely-store-encrypted-user-data-on-my-server-and-serve-it-only-to
On Tue, Apr 17, 2012 at 5:58 PM, Aravind Kumar wrote:
> Hello,
>
> I have just started to venture in
: jeudi 23 août 2007 18:22
À : Struts Users Mailing List
Objet : Re: Authentication and Authorization in S2
What do you mean with "100% Struts 2 security"? As far I know, S2 does
not have anything out-of-the-box regarding security.
In my case, I had to manually develop a login act
protects only *actions* and not data (i.e. which roles can see which
> rows in the database).
>
>
> -Message d'origine-
> De: wild_oscar [mailto:[EMAIL PROTECTED]
> Envoyé: jeudi 23 août 2007 16:15
> À: user@struts.apache.org
> Objet: Re: Authentication and Auth
data (i.e. which roles can see which
rows in the database).
-Message d'origine-
De : wild_oscar [mailto:[EMAIL PROTECTED]
Envoyé : jeudi 23 août 2007 16:15
À : user@struts.apache.org
Objet : Re: Authentication and Authorization in S2
How about AA with Struts2 only?
I'm tryin
How about AA with Struts2 only?
I'm trying to understand Authorization with JAAS, but I'm not being very
successeful. Authentication is taken care of, I use JAAS and a PostgreSQL
database to store users, passwords and roles.
In the end of authentication, I store the subject in the HttpSession:
Thank you very much Zarar and Alvaro for your hints.
Yes. I'm using spring, and I'll take a look at Acegi, and maybe
Berkano, too.
Best regards.
--
Robi.
I'll take a look at the
Alvaro Sanchez-Mariscal wrote:
I agree. You should first try Acegi.
If your auth needs are very specific, you ca
I agree. You should first try Acegi.
If your auth needs are very specific, you can always develop a custom
interceptor.
Alvaro.
On 8/20/07, Zarar Siddiqi <[EMAIL PROTECTED]> wrote:
> If you're using Spring, it's probably a great idea to use Acegi
> Security to handle authentication/authorization
If you're using Spring, it's probably a great idea to use Acegi
Security to handle authentication/authorization. I can't think of
anything it can't do.
http://www.acegisecurity.org/
There's also Berkano which doesn't do nearly as much as Acegi but can
handle most general AA problems:
http://ber
> There used to be (haven't checked on it
> for a while) a project called "Security Filter"
> that was a security database implementation you
> could package with your application. I believe
> it was a SourceForge project.
SecurityFilter hasn't been updated since January:
http://securityfilte
There used to be (haven't checked on it for a while) a project called
"Security Filter" that was a security database implementation you could
package with your application. I believe it was a SourceForge project.
One of the projects I'm currently architecting has need for specialized
security
Once you have your users and roles defined, you can read use the
"roles" attribute for action mappings to restrict access to those
actions to a set of roles.
Hubert
On Fri, 05 Nov 2004 16:46:51 -0300, Mauro Morales M.
<[EMAIL PROTECTED]> wrote:
> El vie, 05-11-2004 a las 13:37 -0600, Vic (Vinny)
El vie, 05-11-2004 a las 13:37 -0600, Vic (Vinny) Cekvenich escribió:
> Struts requires Servlet support container.
> Therefore containers (such as tomcat, resin, etc). support declerative
> security via web.xml.
> You can read for example about tomcat jdbc realms.
> So struts leverages J2EE securi
Struts requires Servlet support container.
Therefore containers (such as tomcat, resin, etc). support declerative
security via web.xml.
You can read for example about tomcat jdbc realms.
So struts leverages J2EE security and you can extend it and customize it.
.V
Davi Salgueiro wrote:
Hi Every On
19 matches
Mail list logo
