Following a web application security presentation yesterday, it became
apparent to me that I needed to further my security model to ensure that a
user has a valid session at the beginning of every action.  What is the
recommended 'best practice' to do this?  Should I write a BaseAction that
extends Action?  extend the ActionServlet?  do something in
processPreprocess?  How is everyone else doing this?

Jerry Jalenak
Development Manager, Web Publishing
LabOne, Inc.

This transmission (and any information attached to it) may be confidential and is 
intended solely for the use of the individual or entity to which it is addressed. If 
you are not the intended recipient or the person responsible for delivering the 
transmission to the intended recipient, be advised that you have received this 
transmission in error and that any use, dissemination, forwarding, printing, or 
copying of this information is strictly prohibited. If you have received this 
transmission in error, please immediately notify LabOne at (800)388-4675.



--
To unsubscribe, e-mail:   <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>

Reply via email to