Re: [S2] User authentication best practice (2nd time...)

2007-01-31 Thread Sébastien LABEY
). > Do you have some best practices to help me...? > > thanks in advance > > Sebastien > > -- View this message in context: http://www.nabble.com/-S2--User-authentication-best-practice-%282nd-time...%29-tf3150750.html#a8744268 Sent from the Struts - User mailing list archive at Nabb

Re: [S2] User authentication best practice (2nd time...)

2007-01-31 Thread Ron Chan
is user in the request, so I've to control > that the user id in the request is the same than the one in session (in > the > user object stored in session after login). > Do you have some best practices to help me...? > > thanks in advance > > Sebastien > >

Re: [S2] User authentication best practice (2nd time...)

2007-01-31 Thread Sébastien LABEY
to:[EMAIL PROTECTED] > Sent: Wednesday, January 31, 2007 8:57 PM > To: Struts Users Mailing List > Subject: Re: [S2] User authentication best practice (2nd time...) > > Thanks for your answer. > Maybe I'm not very clear (sorry for my english). Let's imagine the > following &g

RE: [S2] User authentication best practice (2nd time...)

2007-01-31 Thread Thorsten Schäfer
uts Users Mailing List > Subject: Re: [S2] User authentication best practice (2nd time...) > > Thanks for your answer. > Maybe I'm not very clear (sorry for my english). Let's imagine the > following > request to access the page to update the user informations : >

Re: [S2] User authentication best practice (2nd time...)

2007-01-31 Thread Joe Germuska
On 1/31/07, Sébastien LABEY <[EMAIL PROTECTED]> wrote: Hi all (sorry for the previous unterminated mail), I would like to know if S2 provides a solution to manage user authentication. In short, no. S2 has a RolesInterceptor which allows you to specify that users in certain roles are allowed

Re: [S2] User authentication best practice (2nd time...)

2007-01-31 Thread Sébastien LABEY
IL PROTECTED] > Sent: Wednesday, January 31, 2007 8:22 PM > To: Struts mailing list > Subject: [S2] User authentication best practice (2nd time...) > > Hi all (sorry for the previous unterminated mail), > > I would like to know if S2 provides a solution to manage user > aut

RE: [S2] User authentication best practice (2nd time...)

2007-01-31 Thread Thorsten Schäfer
x27;d think that it's the same in S2. Cheers, Thorsten > -Original Message- > From: Sébastien LABEY [mailto:[EMAIL PROTECTED] > Sent: Wednesday, January 31, 2007 8:22 PM > To: Struts mailing list > Subject: [S2] User authentication best practice (2nd time...) > >

[S2] User authentication best practice (2nd time...)

2007-01-31 Thread Sébastien LABEY
Hi all (sorry for the previous unterminated mail), I would like to know if S2 provides a solution to manage user authentication. I also would like to know if someone could lead me to best practice for user creation / authentication to a web application. I'm worried about security after the user h

[S2] User authentication best practice

2007-01-31 Thread Sébastien LABEY
Hi all, I would like to know if S2 provides a solution to manage user authentication. I also would like to know if someone could lead me to best practice for user creation / authentication to a web application. I'm worried about security after the user has logged in, because of the parameters tha