For security-constraint rules, you can put those in a web-security.xml file in the mergedir directory for webdoclet.
For an example app that uses XDoclet and Container Managed Security, checkout AppFuse: http://raibledesigns.com/appfuse. HTH, Matt > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf > Of Senthil Kumar M Rangaswamy > Sent: Monday, May 24, 2004 11:30 PM > To: [EMAIL PROTECTED] > Subject: RE: [Xdoclet-user] Help please > > > Thanks a lot. i am about to try out this idea, and is that > neccessary to congiure the web.xml too. since i read some > where to secure the action we need also to congire the web.xml like > <security-constraint> > <web-resource-collection> > <web-resource-name>Secured Core > Context</web-resource-name> > <url-pattern>getAll.do</url-pattern> > </web-resource-collection> > <auth-constraint> > <role-name>Admin</role-name> > </auth-constraint> > </security-constraint> > and if this is needed then how to specify this in XDoclet. > > > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] Behalf Of > Matt Raible > Sent: Monday, May 24, 2004 9:13 PM > To: [EMAIL PROTECTED] > Subject: Re: [Xdoclet-user] Help please > > > In the @struts.action tag, simply add a "roles" attribute > (single value or comma-delimited list). If you're using > container-managed authentication, Struts will verify that the > user is in one of these roles - and if not, send a 403 > response code. I'd recommend configuring a 403 page in your > web.xml to handle this response code - otherwise, you'll > likely see the containers default 403 page which is quite ugly. > > Matt > > On May 24, 2004, at 5:39 AM, Senthil Kumar M Rangaswamy wrote: > > > Hai all > > I am working on Struts in JBoss appserver. i am doing some > > security works for my app. for which i am using JAAS, for > this i need > > to configure my web.xml, i dont know exactly what is the > XDoclet tag > > to specify the security-constraint for my struts action. > can any body > > give me a sample code that will do this. > > ______________________________________________________ > > Senthil Kumar M Rangaswamy > > Dhyan Infotech Pvt Limited #107/3, Nelson Manickam Road > > Aminjikarai,Chennai-600 029 Phone : +91 44 52100088 Mobile > : +91-98404 > > 27660 [EMAIL PROTECTED] > > ______________________________________________________ > > > > > > > > > > > > ------------------------------------------------------- > This SF.Net email is sponsored by: Oracle 10g > Get certified on the hottest thing ever to hit the market... > Oracle 10g. Take an Oracle 10g class now, and we'll give you > the exam FREE. http://ads.osdn.com/?ad_id149&alloc_id66&op=ick > _______________________________________________ > xdoclet-user mailing list > [EMAIL PROTECTED] > https://lists.sourceforge.net/lists/listinfo/xdoclet-user > > > > > ------------------------------------------------------- > This SF.Net email is sponsored by: Oracle 10g > Get certified on the hottest thing ever to hit the market... > Oracle 10g. > Take an Oracle 10g class now, and we'll give you the exam > FREE. http://ads.osdn.com/?ad_id=3149&alloc_id=8166&op=click > _______________________________________________ > xdoclet-user mailing list > [EMAIL PROTECTED] > https://lists.sourceforge.net/lists/listinfo/xdoclet-user > ------------------------------------------------------- This SF.Net email is sponsored by: Oracle 10g Get certified on the hottest thing ever to hit the market... Oracle 10g. Take an Oracle 10g class now, and we'll give you the exam FREE. http://ads.osdn.com/?ad_id149&alloc_id66&op=click _______________________________________________ xdoclet-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/xdoclet-user
