In struts-config.xml, define the actions this way:
Only manager can execute the action
<action ...
roles="manager"
/>
Only employee can execute the action
<action ...
roles="employee"
/>
Manager or employee can execute the action
<action ...
roles="manager, employee"
/>
Everyone can execute the action
<action ...
roles=""
/>
You can define the roles on your TOMCAT_HOME/conf/tomcat-users.xml (for
Tomcat 4.1.30).
Pedro Salgado
On 04/06/14 20:24, "Zhang, Larry (L.)" <[EMAIL PROTECTED]> wrote:
> I want to define two security roles, one of which is employee and another is
> manager. Employee is not able to see some resources belonging to manager.
> Under J2EE standard, we can define these in web.xml, it also seems to me that
> this can be done in struts.
>
> Can you point out how to perform this task? Detailed instruction is
> appreciated.
>
> Thanks.
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
