I want to secure the admin portion of my application from unauthorized users. What is the best way to achieve this task? Should I include a "CheckUser" tag on every jsp pages and call a "CheckUser" function on every single action class? I don't want the user to just key in the direct url of the jsp page or calling the action class directly. But doing this, I've to go to the database twice on every action.
Do you know a better way? _________________________________________________________________________ Introducing the all new and improved continental.com. With a totally new personalized design, it's the best place to go. Before you go. Continental Airlines. Work Hard. Fly Right. http://www.continental.com -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
