David Cabrera wrote:
>
> Hi all,
> I have a question on servlets' security. I have a Netscape Enterprise
> Server 3.5.1 whith several users and groups on its own database. The access
> to different directories of HTML pages of the server is restricted to some
> groups of users, so they need to send an HTTP authentification to see the
> contents of those directories.
> Now, some pages need to be "dynamic" (they must build its contents
> depending of the records on a database). I decided to make servlets for
> those pages, using JDBC and ServletExec.
> My question is: �Can I make servlets have restricted access depending on a
> HTTP authentification? If yes, �can they share Netscape Server's
> users/groups database?
Yes, you can define Access Control Lists (ACLs) for any type of server resource,
including servlets. Use the admin tool and create an ACL of type
uri=servlet/restrictedServlet
--
Hans Bergsten [EMAIL PROTECTED]
Gefion Software http://www.gefionsoftware.com
___________________________________________________________________________
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff SERVLET-INTEREST".
Archives: http://archives.java.sun.com/archives/servlet-interest.html
Resources: http://java.sun.com/products/servlet/external-resources.html
LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
