In my opinion, the best method to use is container-managed authentication. You can set this up via your web.xml file and protect your struts action class (*.do).
http://www.onjava.com/pub/a/onjava/2001/08/06/webform.html Matt --- Princeton Lau <[EMAIL PROTECTED]> wrote: > Scott, > > Check out the Struts sample app, it has two features that could solve your > problem. > > Firstly, it has a login form and action. The sample app checks against an > XML file for a list of users, but you could code the action to access a > business object that verifies the username and password. If the lookup > fails, then return them to the login page with an error. > > It also has a custom tag, checklogin <?>, to ensure that the user has logged > in before doing anything. Just place this tag in your JSPs and if the user > isn't logged in yet, it will return them to the login page. > > HTH, > > Princeton > > -----Original Message----- > From: Scott Watson [mailto:[EMAIL PROTECTED]] > Sent: Friday, November 02, 2001 8:45 AM > To: Struts Users Mailing List > Subject: Force login... > > > My appologies for asking something that has probablly been asked and > answered before, however, I wasn't able to find the answer in > my searches. > > How do you force someone to login before being allowed to access your > application. It doesn't seem right to code this in each > action class. > > Is it possible to search the archives for this list like the SERVLET and the > JSP lists? > > Thanks > Scott. > > > -- > To unsubscribe, e-mail: > <mailto:[EMAIL PROTECTED]> > For additional commands, e-mail: > <mailto:[EMAIL PROTECTED]> > > > > -- > To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> > For additional commands, e-mail: <mailto:[EMAIL PROTECTED]> > __________________________________________________ Do You Yahoo!? Find a job, post your resume. http://careers.yahoo.com -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
