Yup this makes sense. I think thats right But now I have small problem authentication was so simple ie user table has a field indicating which level of acces, so I used a simple authentication filter.
So now I dont know what I should put in the <login-config> element? Any ideas or should I just write a filter form JSP's Regards Wendy > -----Original Message----- > From: Craig R. McClanahan [mailto:[EMAIL PROTECTED]] > Sent: Monday, December 02, 2002 11:21 AM > To: Struts Users Mailing List > Subject: RE: JSP's under WEB-INF... or not > > > > > On Fri, 29 Nov 2002, Wendy Cameron wrote: > > > Date: Fri, 29 Nov 2002 09:22:20 +1000 > > From: Wendy Cameron <[EMAIL PROTECTED]> > > Reply-To: Struts Users Mailing List <[EMAIL PROTECTED]> > > To: Struts Users Mailing List <[EMAIL PROTECTED]> > > Subject: RE: JSP's under WEB-INF... or not > > > > I have been trying out this concept of using a nobody role > to close access to jsp and when I put a jsp page in I get the > following error. Which wasnt quite what I had expected I had > expected an access denied type error. Is this how it should behave? > > Or is there something wrong with what I have set up.? > > > > Looks like you might be missing a <login-config> element that > tells the > container how user login is supported. > > Craig > > > -- > To unsubscribe, e-mail: > <mailto:[EMAIL PROTECTED]> > For additional commands, e-mail: > <mailto:[EMAIL PROTECTED]> > > -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
