Hi Gianluca,
how would You expect to share credential without https?
Can't You just turn https on for Your login action?
If there is no https, all data are sent in plain text - as far as i know.
Best Greetings,
Paweł Wielgus.
2008/10/3 [EMAIL PROTECTED] <[EMAIL PROTECTED]>:
> Ok, i will write a
Ok, then I take version 2.7.2 for a spin.
/Gunnar
> -Ursprungligt meddelande-
> Från: Chris Pratt [mailto:[EMAIL PROTECTED]
> Skickat: den 2 oktober 2008 17:42
> Till: Struts Users Mailing List
> Ämne: Re: Ognl versions
>
> I have been using OGNL 2.7.2 with Struts 2.0.11.2 and 2.1.2
>
Ok, i will write a custom interceptor and/or action ho do this, to
allow browser and server to safely share credential without https,
like in standard jaas authentication.
I've no idea or how to do. Can someone give me an hint?
Inviato da iPhone
Il giorno 02/ott/08, alle ore 20:59, Laurie H
I saw another thread about this already, and the suggestions were to
turn off dev mode (I'm not running devmode), or to filter them out in my
logging mechanism.
I have log4j.xml in my .war file, and I use it to control logging in all
my classes, but I can't find the right magical incantation t
attempting to follow your sans Spring implementation
curious as to which Bean will you be using to take the place of
JndiObjectFactoryBean?
another alternative would be to implement a stateless session bean such as what
is described at
http://www.oracle.com/technology/pub/articles/dikmans-sprin
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi Felipe,
sorry, didn't read carefully. Did you have a lool at Oracle's Toplink
Forum ?
http://forums.oracle.com/forums/forum.jspa;jsessionid=8d92201c30d6c8545719450d4cc49ae1ecd52fbaab42.e34Qc3aLbh8RbO0LbxmRb3eObNeMe0?forumID=48&start=0
or Oracle's
Gianluca Musella wrote:
I've implemented an AuthenticationInterceptor. If the user isn't
logged then is redirected to a login page to enter credential.
The problem is that from this page user and password are sent in clear
text, as a normal http post.
Is this true? And if yes there is a way to
Thanks for replay.
But thats the problem... im not using spring. So, do you have a clue?
On Thu, Oct 2, 2008 at 9:31 AM, Volker Karlmeier <[EMAIL PROTECTED]> wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> http://www.oracle.com/technology/tech/java/oc4j/1013/how_to/how-to-ejb30-jpa-s
I am using struts2.
I don't want .action or .do on the end of the url's, so I set
struts.action.extension='' (empty string)
Now this leaves me with a bit of a problem serving static content, since
struts swallows up all of my requests, and nothing gets through to the
default servlet.
How can I s
Thank you very much Dale, I'll take a look at that.
Jan
-Ursprüngliche Nachricht-
Von: Dale Newfield [mailto:[EMAIL PROTECTED]
Gesendet: Donnerstag, 2. Oktober 2008 19:02
An: Struts Users Mailing List
Betreff: Re: AW: ExecuteAndWait Interceptor
Jan Froehlich wrote:
> Can no one giv
Jan Froehlich wrote:
Can no one give me a hint with that??
All sources (google, books...) say that it is really easy to work with that
interceptor...
Error messages usually have useful content:
java.lang.UnsupportedOperationException at
java.util.Collections$UnmodifiableMap.put
org.apach
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
http://www.oracle.com/technology/tech/java/oc4j/1013/how_to/how-to-ejb30-jpa-spring/doc/how-to-ejb30-jpa-spring.html
http://www.zdnet.de/using_oracle_toplink_with_the_spring_framework_download-39002355-60263173-1.htm
http://almaer.com/blog/toplink-spr
Hi.
Im trying to find on google what is the best practice to use
jpa(toplink). Where i should save the EntityManagerFactory?
ApplicationScope? Session? And create an EntityManager for each action
called? How? Existe an tutorial for? I just found tutorials using
Spring and Hibernate.
Thanks in adv
I have been using OGNL 2.7.2 with Struts 2.0.11.2 and 2.1.2 for a while
without any problems. Maybe it's something in OGNL 2.7.3 that is
incompatible.
(*Chris*)
On Thu, Oct 2, 2008 at 6:45 AM, Owen Berry <[EMAIL PROTECTED]> wrote:
> In light of this issue, it would be nice if a newer version o
You guys can follow the progress of getting the new version of OGNL into
Struts in this Jira bug:
https://issues.apache.org/struts/browse/WW-2128
Carlos Luis Zúñiga Sibaja
__
[EMAIL PROTECTED]
divide et impera...
On Thu, Oct 2, 2008 at 7:45 AM, Owen Berry <[EMAIL
In light of this issue, it would be nice if a newer version of ognl
could be used within struts. I'm using the 2.1.2 beta and it also
depends on ognl-2.6.11. Not sure how simple it would be to update to a
newer ognl though as struts-2.1.2 also depends on xwork-2.1.1, which
depends on ognl-2.6.11, s
Hi,
I can see that many of my threads stays blocked for a long time in
gnl.OgnlRuntime.invokeMethod line 511.
If this is to any help.
:-)
> -Ursprungligt meddelande-
> Från: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]
> Skickat: den 2 oktober 2008 12:11
> Till: user@struts.apache.or
I've implemented an AuthenticationInterceptor. If the user isn't
logged then is redirected to a login page to enter credential.
The problem is that from this page user and password are sent in clear
text, as a normal http post.
Is this true? And if yes there is a way to use some type of encriptio
Hi...
Can no one give me a hint with that??
All sources (google, books...) say that it is really easy to work with that
interceptor...
Is there any good tutorial, or a list of things I have to obey?
Regards
Jan
-Ursprüngliche Nachricht-
Von: Jan Froehlich [mailto:[EMAIL PROTECTED
Hi,
We use struts2-core 2.0.11.2 which according to maven use
opensymphony.ognl version 2.6.11.
I wonder what the relationships is to ognl.ognl and specifically if the
opensymphony version also has the bug
http://jira.opensymphony.com/browse/OGNL-141
When we are doing load tests we get very long
20 matches
Mail list logo
