PROTECTED]
Sent: Friday, August 20, 2004 4:40 PM
Subject: Struts login with JAAS (Part 2)
I'm back!
After getting some jaas studies, i'm a little bit
better, so i can now formulate a better question.
Here it is... (I know that this is not only a Struts
question, because it envolves jaas, but i'm
: Leandro Melo [EMAIL PROTECTED]
To: struts jakarta [EMAIL PROTECTED]
Sent: Friday, August 20, 2004 4:40 PM
Subject: Struts login with JAAS (Part 2)
I'm back!
After getting some jaas studies, i'm a little bit
better, so i can now formulate a better question.
Here it is... (I know
Sorry to hear that you are so mad, it is indeed frustrating to try to
work with APIs that are poorly documented, but, I think you're still
missing one thing I've been saying . . .
Leandro Melo wrote:
Hi Erik,
the point is that i actually changing my approach.
I gave up for a moment the
Hi Erik, i was not missing that, i just forgot to tell
you that...
- JBoss actually propagates it`s security suff to
Tomcat and vice-versa. I got this information from the
JBoss forum
(http://jboss.org/index.html?module=bbop=viewtopict=53202).
Then i tested it myself with a simple login using
Hmm, well, I hope that I turn out to be wrong here. I tried it myself
and couldn't get it to work. Please let me know how it goes.
Erik
Leandro Melo wrote:
Hi Erik, i was not missing that, i just forgot to tell
you that...
- JBoss actually propagates it`s security suff to
Tomcat and vice-versa.
this myself... So I am prob. way off...
--
Sloan
-Original Message-
From: Leandro Melo [mailto:[EMAIL PROTECTED]
Sent: Friday, August 20, 2004 8:21 AM
To: Struts Users Mailing List
Subject: Re: Struts login with JAAS (Part 2)
Hi Erik,
the point is that i actually changing my approach.
I gave up
I'm back!
After getting some jaas studies, i'm a little bit
better, so i can now formulate a better question.
Here it is... (I know that this is not only a Struts
question, because it envolves jaas, but i'm pretty
sure that people over here could give me some advise
on how to handle the problem).
If the login is successful, keep the user object in
the session. In every action class, you can check
whether the user object/user exists in the session or
not. If not, redirect to login.jsp.
Maybe you can have the check in some super action
class so that you dont have to repeat the code in each
Leandro, perhaps I didn't explain very well. As far as I know, there is
no way for you to intercept the login request and process the j_username
and j_password parameters yourself -- you have to let the container
receive the form submittal and process the login. This is why I said,
your login
Sorry, I may have mislead you here:
Erik Weber wrote:
Leandro, perhaps I didn't explain very well. As far as I know, there
is no way for you to intercept the login request and process the
j_username and j_password parameters yourself -- you have to let the
container receive the form submittal
10 matches
Mail list logo