Re: Sample Code for Desclarative Security in Struts

2005-05-09 Thread Craig McClanahan
t; Paul Craig > > -Original Message- > From: Craig McClanahan [mailto:[EMAIL PROTECTED] > Sent: Monday, May 09, 2005 3:39 PM > To: Struts Users Mailing List; Jeff Beal > Subject: Re: Sample Code for Desclarative Security in Struts > > On 5/9/05, Jeff Beal <[EMAIL P

RE: Sample Code for Desclarative Security in Struts

2005-05-09 Thread Durham David R Jr Ctr 805 CSPTS/SCE
> > They seem to be capable of more fine tuned access control > > You're talking about URL filtering, yeah, definitely. Just to clarify, you're talking about security beyond URL filtering providing more fine tuned access control. I concur. - Dave --

RE: Sample Code for Desclarative Security in Struts

2005-05-09 Thread Durham David R Jr Ctr 805 CSPTS/SCE
> Is there any particular reason why custom logins are not favored > over using this sort of approach? I think it comes down to standards and the relative difficulties associated with implementing security. But, as far as favorites go, everyone has them. > They seem to be capable of more fin

RE: Sample Code for Desclarative Security in Struts

2005-05-09 Thread Benedict, Paul C
lto:[EMAIL PROTECTED] Sent: Monday, May 09, 2005 3:39 PM To: Struts Users Mailing List; Jeff Beal Subject: Re: Sample Code for Desclarative Security in Struts On 5/9/05, Jeff Beal <[EMAIL PROTECTED]> wrote: > Solution 1: I don't believe there has to be any correlation between > your

Re: Sample Code for Desclarative Security in Struts

2005-05-09 Thread Dakota Jack
Is there any particular reason why custom logins are not favored over using this sort of approach? They seem to be capable of more fine tuned access control and can easily be relegated to a common solution for different needs. On 5/9/05, Craig McClanahan <[EMAIL PROTECTED]> wrote: > On 5/9/05, Je

Re: Sample Code for Desclarative Security in Struts

2005-05-09 Thread Craig McClanahan
On 5/9/05, Jeff Beal <[EMAIL PROTECTED]> wrote: > Solution 1: I don't believe there has to be any correlation between > your web-resource-collections in your security-constraints and your > servlet-mappings in web.xml. It seems to be perfectly valid to map > *.do to ActionServlet (a single servlet

Re: Sample Code for Desclarative Security in Struts

2005-05-09 Thread Jeff Beal
Solution 1: I don't believe there has to be any correlation between your web-resource-collections in your security-constraints and your servlet-mappings in web.xml. It seems to be perfectly valid to map *.do to ActionServlet (a single servlet-mapping) and have /admin/*.do and /user/*.do handled by

Sample Code for Desclarative Security in Struts

2005-05-08 Thread alec
Would there be any sample code showing how to use declarative security in Struts? I guess this would be a bit tricky as there is only 1 web resource to protect (ActionServlet) Appreciate any pointer. - To unsubscribe, e-mail: