Arun wrote:
On 10/5/07, Pid [EMAIL PROTECTED] wrote:
Arun wrote:
I have a tomcat 6 installed. I have a running webapplication . I need to
implement a role based access control. How can I combine servers
capabilities
so that I can use the request.getPrincipal() method ... I also have a list
Hi,
I have a tomcat 6 installed. I have a running webapplication . I need to
implement a role based access control. How can I combine servers caabilities
so that I can use the request.getPrincipal() method ... I also have a list
of roles and groups and who all are assigned what all roles/groups
Arun wrote:
Hi,
I have a tomcat 6 installed. I have a running webapplication . I need to
implement a role based access control. How can I combine servers caabilities
so that I can use the request.getPrincipal() method ... I also have a list
of roles and groups and who all are assigned what
That is tied down to a server. I have my own db scheme as well as different
servers to deploy. I cannot use tomcat specific Realm class. Are there any
other solutions? any links ?
On 10/5/07, Pid [EMAIL PROTECTED] wrote:
Arun wrote:
Hi,
I have a tomcat 6 installed. I have a running
From: Arun [mailto:[EMAIL PROTECTED]
Subject: Re: Authorization on Apache Tomcat the J2ee Way.
I cannot use tomcat specific Realm class.
Again, read the servlet spec. If you can't accomplish what you need
within that structure, then anything you do will be container-specific,
regardless
Take a look at Acegi Security for Spring Framework,
http://acegisecurity.org/
It is a complete, container non-specific framework. The web part of it
is configured as a filter (a chain of filters) in your web.xml.
The SecurityContextHolderAwareRequestFilter class there publishes
acegi-specific