e
>> > this is with a Filter that wraps the request with an
>> > HttpServletRequestWrapper.
>> > (*Chris*)
>> >
>> > On 6/29/07, wild_oscar <[EMAIL PROTECTED]> wrote:
>> >>
>> >>
>
>
--
View this message in context:
http:/
eems that struts can't seem to "know" my subject and principals (saved
>> in
>> a
>> session attribute), so whatever the role I try (or user="userxx"), the
>> tag
>> is not displayed.
>>
>> Can anyone send me in the right direction reg
aved
>> in
>> a
>> session attribute), so whatever the role I try (or user="userxx"), the
>> tag
>> is not displayed.
>>
>> Can anyone send me in the right direction regarding this? Where does
>> struts
>> look for the users and rol
ot;), the tag
is not displayed.
Can anyone send me in the right direction regarding this? Where does
struts
look for the users and roles? How can I integrate JAAS with this MVC?
--
View this message in context:
http://www.nabble.com/JAAS-authorization-with-Struts-tf473.html#a11360901
Sent
t:
http://www.nabble.com/JAAS-authorization-with-Struts-tf473.html#a11360901
Sent from the Struts - User mailing list archive at Nabble.com.
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
I'm not sure of the specifics, this isn't a capability I've used; I just
know it's there ;-)
L.
Adam Hardy wrote:
Something that removes items from collections according to data
visibility constraints declaratively must be quite complex.
Presumably the collections are declared in a Spring-st
Something that removes items from collections according to data
visibility constraints declaratively must be quite complex.
Presumably the collections are declared in a Spring-style context factory?
And then you would have to declare which property of the item provides
the IDs, and you also de
It does rely on Spring, yes, but getting Spring to co-exist with Struts
is trivial; you don't need to change any existing code to do that,
though once you have Spring available you may well find yourself wanting
to take advantage of it ;-)
L.
Raghu Kanchustambham wrote:
On the first cut this
Actually, Acegi does offer what Raghu was looking for (or at least one
possible route to achieving it). One of the things it can do is
automatically filter collections to remove items the current user
shouldn't be allowed to see, so you don't have to bury that kind of
business logic in your dat
Hi Raghu, Laurie,
I did a project recently which used the Acegi security project which
comes bundled with Spring, and although I was never involved in the
implementation of it myself, I heard that it was effective.
Am I correct in assuming though that it does not offer the alternative
that R
On the first cut this looks like authentication/authorization for Spring
framework. Do I need to get struts co-exist with spring for this to work ?
And how much of an effort would that be?
But yes.. this looks quite a powerful and neat concept.
Thanks for refering it.
Regards,
Raghu
On 11/20/
Take a look at the Acegi Security project. It provides *extremely*
powerful declarative security capabilities, upto and including filtering
database query results to exclude things the current user shouldn't be
able to see. It might be exactly what you're looking for.
L.
Raghu Kanchustambham
Hi,
I could successfully place my authentication scheme in place using the
article at
http://www.jroller.com/comments/tomdz?anchor=using_jaas_with_struts_a
I also could place "resource" level authorization in place. However the
definition of resource is the "traditional" action mapping. However I
13 matches
Mail list logo
