I was thinking of using declarative security (in web.xml) for resource
authorization. Is this a good idea? Is it enough?
-Oorspronkelijk bericht-
Van: CRANFORD, CHRIS [mailto:chris.cranf...@setech.com]
Verzonden: maandag 9 augustus 2010 15:50
Aan: Struts Users Mailing List
Onderwerp: RE:
On Fri, 06 Aug 2010 20:49:03 -0400, Martin Gainty
wrote:
if the action collection accessor formats the array to deliver each
attribute of CartItem as expected by param within url
then grab the array from the action..
Martin Gainty
Mr Gainty wins the prize.
For referenc
On Fri, 06 Aug 2010 17:12:10 -0400, François Rouxel
wrote:
should be working, did you put in s:url tag includeParameters='get' ?
Yes, although I don't think that's what includeParams is used for - here's
my actual code:
URL 1:
and here's the result:
URL 1: a.b?pn=
Pattern A:
/unsecured/*
Run whatever unsecured interceptors on these. This would not include
the authentication interceptor or the allowed resource check
interceptor. That's because these are considered OPEN to everyone.
Pattern B:
/secured/*
Run the authentication check and the resource
hi,
I need shared hosting for struts 1.2 on tomcat. Would anyone recommend one,
also what is better VPS or shared hosting for this .
I am looking for lowcost , good quality .
Please advice.
--
Thanks and kind Regards,
Abhishek jain
FWIW, I wouldn't combine the two into the same interceptor since they're
rather different things... plus resource access is more likely to take place
in a different layer, and not be a cross-cutting concern.
Dave
On Mon, Aug 9, 2010 at 3:07 AM, Rahul Mohan wrote:
> I think we are mixing two iss
Hi Franz,
you can use tag for text
translation (where "title" is name of your variable).
Best regards,
Michal
Franz Wong wrote on 9.8.2010 5:14:
Hi group,
In the jsp page, I have a page scope variable "title". This variable stores
the key of the resource bundle. I can print the value by
I think we are mixing two issues here. Authentication deals with verifying
whether a user is what he/she claims to be and authorization is the
mechanism for checking whether someone has access to a particular
resource.
The standard practice is to prevent unauthenticated users from accessing
a
8 matches
Mail list logo
