In the @struts.action tag, simply add a "roles" attribute (single value
or comma-delimited list). If you're using container-managed
authentication, Struts will verify that the user is in one of these
roles - and if not, send a 403 response code. I'd recommend
configuring a 403 page in your web.xml to handle this response code -
otherwise, you'll likely see the containers default 403 page which is
quite ugly.
Matt
On May 24, 2004, at 5:39 AM, Senthil Kumar M Rangaswamy wrote:
Hai all
I am working on Struts in JBoss appserver. i am doing some
security works for my app. for which i am using JAAS, for this i need
to configure my web.xml, i dont know exactly what is the XDoclet tag
to specify the security-constraint for my struts action. can any body
give me a sample code that will do this.
______________________________________________________
Senthil Kumar M Rangaswamy
Dhyan Infotech Pvt Limited #107/3, Nelson Manickam Road
Aminjikarai,Chennai-600 029 Phone : +91 44 52100088 Mobile : +91-98404
27660 [EMAIL PROTECTED]
______________________________________________________
-------------------------------------------------------
This SF.Net email is sponsored by: Oracle 10g
Get certified on the hottest thing ever to hit the market... Oracle 10g.
Take an Oracle 10g class now, and we'll give you the exam FREE.
http://ads.osdn.com/?ad_id149&alloc_id66&op=click
_______________________________________________
xdoclet-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/xdoclet-user
