[ http://mc4j.org/jira/browse/STS-239?page=comments#action_10420 ] Christian Schwanke commented on STS-239: ----------------------------------------
Maybe the RedirectResolution should be "SSL-Aware" as well ? It would require to refactor the SSL rewriting code into an external class available to both the StripesTagSupport as well as the Resolution class. But it would provide more consistency and prevent the loading of SSL protected action beans through internally triggered redirects. > SSL support for Link, Url and Form Tag > -------------------------------------- > > Key: STS-239 > URL: http://mc4j.org/jira/browse/STS-239 > Project: Stripes > Issue Type: New Feature > Components: Tag Library > Affects Versions: Release 1.5, Release 1.4 > Reporter: Christian Schwanke > Assigned To: Tim Fennell > Fix For: Release 1.5 > > Attachments: Stripes-SSL.zip > > > As a Struts user that learned about Stripes just a few days ago, I really > missed something like the SSL-Extension for Struts. > In essence, it is now possible to mark an ActionBean as secure using a new > annotation @Secure. > The Stripes tags used for urls, links and forms will check the security state > of the destination ActionBean and automatically rewrite the target URL > accordingly. > The configuration of the SSL settings (host, port) is done using > init-parameters on the StripesFilter. > I have attached a ZIP file containing the modified/added java sources and the > modified TLD file. > The sources also contain a second modification: I've also added a new > attribute to the link and url tag called excludeSpecialParams. If this > attribute is set to true, Stripes specific parameters (i.e. the source page > parameter) is omitted from the final URL. However, keep in mind that removing > those parameters can break your application. > My modifications are based on the 1.4 Beta 1 sources. A detailed explanation > on what I have changed is included within the attached ZIP file. -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://mc4j.org/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ Stripes-development mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/stripes-development
