The use of tokens is very simple. Let's say you have two actions, A and B. Action A will call setToken and put into the session a unique identifier. Action A then forwards off to a page to display to the user. Struts Form tag knows to output the token as a hidden field. When that is submitted to action B, action B should first check if the token is valid. If so, accept the request. Otherwise reject it.
Paul On Jan 3, 2008 1:17 AM, Al Sutton <[EMAIL PROTECTED]> wrote: > Is the information at > http://www.jaxmag.com/itr/online_artikel/psecom,id,648,nodeid,147.htmlabout > half way down the page (titled "Handle duplicate form submission") any > use? > > -----Original Message----- > From: Partha Maitra [mailto:[EMAIL PROTECTED] > Sent: 03 January 2008 04:59 > To: Struts Users Mailing List > Subject: RE: saveToken() help!!!!! > > Hi, > I am sorry that I misunderstood him, really sorry for that..:-( it was > very > useful document, but I am working with struts 1.3 and the example was with > struts2 it will be a great help if you can provide me an example with 1.3 > with > saveToken() method.. > > ============== > Thanks & Regards, > Partha > > > > > > I think you misunderstood him. > > Have you looked at the showcase?, if so where did you have a problem > understanding how it should work? > > -----Original Message----- > From: Partha Maitra [mailto:[EMAIL PROTECTED] > Sent: 02 January 2008 12:19 > To: Struts Users Mailing List > Subject: Re: saveToken() help!!!!! > > Thanks for the idea, > but pls dont respond to discourage someone who's trying to learn if you > dont > know to respond then pls stop responding. > > ============== > Thanks & Regards, > Partha > > ______________________________________________________________________ > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > > ______________________________________________________________________ > > > > ______________________________________________________________________ > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > >
