http://java.sun.com/j2ee/1.4/docs/tutorial/doc/
Chapter 32: Security
Should help.
Erik
Scott Purcell wrote:
I am creating a shopping-cart type application using struts and have a question. The site itself does not have any authentication on it, as people just browse and add stuff to the cart.
But the site does require some data manipulation into the database. Upon thinking about this, I would like to be able to have "certain" users click a administration link and be able to administer some product details, quantities, colors, etc.
I am trying to lay out a way to achieve this, and be secure at the same time. I had thought about using the web-server authentication mechanism, or form-based, and got confused. Most sites I have done use form-based, where we pull out name, password from database, but I also believe some may use the containers authentication scheme.
Can anyone give me some advice, pros-cons, examples, links of how to move foward with this.
Thanks,
Scott
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
