I agree with David. The view layer should not perform authentication logic, IMO the view layer should not contain *any* logic [maybe I live in a fantasy world :-)].
-S ----- Original Message ----- From: "David Graham" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Thursday, April 03, 2003 7:11 AM Subject: Re: About the <checkLogonTag> of the example application > IMO, it is *not* a good practice. The view layer should not perform > authentication logic. This should be placed in a Filter or a base Action > method that secured actions call before executing. It's there as an example > of using application specific custom tags with Struts tags. > > David > > > > >From: Eyrignoux Marc <[EMAIL PROTECTED]> > >Reply-To: "Struts Users Mailing List" <[EMAIL PROTECTED]> > >To: [EMAIL PROTECTED] > >Subject: About the <checkLogonTag> of the example application > >Date: Thu, 3 Apr 2003 17:08:52 +0200 (CEST) > > > >Hi everybody, > > > >The <checkLogonTag> of the Struts application checks > >if the user has logged in the application before > >displaying a JSP page. > > > >Therefore it manages a part of the security of the > >application. > >I would like to know if this tag is a good practice ? > >If it can be used in a "real world" J2EE application ? > >If it is J2EE compliant and MVC compliant ? > > > >Thanks in advance, > >Marc. > > > >___________________________________________________________ > >Do You Yahoo!? -- Une adresse @yahoo.fr gratuite et en français ! > >Yahoo! Mail : http://fr.mail.yahoo.com > > > >--------------------------------------------------------------------- > >To unsubscribe, e-mail: [EMAIL PROTECTED] > >For additional commands, e-mail: [EMAIL PROTECTED] > > > > > _________________________________________________________________ > Tired of spam? Get advanced junk mail protection with MSN 8. > http://join.msn.com/?page=features/junkmail > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.463 / Virus Database: 262 - Release Date: 3/17/2003 --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]