A complementary posting appeared a while back in the struts-user mail list from Matt Raible at icsynergy. (http://www.mail-archive.com/struts-user@jakarta.apache.org/msg18543.html) He says he has been using the security extension with only one minor change; instead of returning SC_BAD_REQUEST when the user's role does not meet the declared roles for the action, it returns SC_FORBIDDEN.
Best regards, Jim Cakalic > -----Original Message----- > From: Ted Husted [mailto:[EMAIL PROTECTED]] > Sent: Tuesday, December 11, 2001 12:45 PM > To: Struts Developers List > Subject: Re: role based actions > > > Craig, have you looked at Nic Hobb's extension? > > http://husted.com/struts/resources/struts-security.htm > > There's a place on my agenda where I was going to try it myself, but > still haven't gotten there. > > -Ted. > > "Craig R. McClanahan" wrote: > > Adding this (and a few of the other recent enhancements) to > Struts 1.1 is > > definitely on *my* list. I will have some time to do so > between Christmas > > and New Years. > > > > Craig McClanahan > > -- > To unsubscribe, e-mail: > <mailto:[EMAIL PROTECTED]> > For additional commands, e-mail: > <mailto:[EMAIL PROTECTED]> > <font size="1">Confidentiality Warning: This e-mail contains information intended only for the use of the individual or entity named above. If the reader of this e-mail is not the intended recipient or the employee or agent responsible for delivering it to the intended recipient, any dissemination, publication or copying of this e-mail is strictly prohibited. The sender does not accept any responsibility for any loss, disruption or damage to your data or computer system that may occur while using data contained in, or transmitted with, this e-mail. If you have received this e-mail in error, please immediately notify us by return e-mail. Thank you.
