dave , read this mail before !!!
2009/4/21 elyes sallem <elyes.sal...@gmail.com>
> ah , no , if you wanna make a test of user privilige , u can use in this
> case realm
> u defines roles
> and u can protect same page by
> security-constraint tag , u defines differents roles , here is an example
>
> <security-constraint>
> <display-name>Test d'authentification tomcat</display-name>
>
> <!-- Liste des pages protégées -->
> <web-resource-collection>
> <web-resource-name>Page sécurisée</web-resource-name>
>
> <url-pattern>/admin/*</url-pattern>
> </web-resource-collection>
> <!-- Rôles des utilisateurs ayant le droit d'y accéder -->
>
> <auth-constraint>
> <role-name>admin</role-name>
> </auth-constraint>
>
> </security-constraint>
> <login-config>
> <!-- Type d'authentification -->
> <auth-method>BASIC</auth-method>
>
> <realm-name>Espace Membres</realm-name>
> </login-config>
> <!-- Rôles utilisés dans l'application -->
>
> <security-role>
> <description>Administrateur</description>
> <role-name>admin</role-name>
>
> </security-role>
>
> Regards
> Sallemel
>
>
>
>
>
> 2009/4/21 Jim Kiley <jhki...@summa-tech.com>
>
> Are you recommending testing a user's privileges in the untrusted,
>> untrustworthy, totally hackable client code? Really?
>>
>> On Tue, Apr 21, 2009 at 10:43 AM, elyes sallem <elyes.sal...@gmail.com
>> >wrote:
>>
>> > of course u make the test , in a javascript function, in your jsp
>> >
>> > Elyes
>> >
>> > 2009/4/21 elyes sallem <elyes.sal...@gmail.com>
>> >
>> > > hi Stefano ,
>> > > in fact , i choosed to back to one page in every case, that's ok for
>> me
>> > > if u wanna remain in the same page
>> > > u can declare a getter for a member in the form
>> > > let's say test1
>> > > so in getTest1(){
>> > > you make the treatment u want
>> > > and return a boolean resultat for example
>> > > if true, u submit to an action else u don't submit
>> > > and u declare test1 in the jsp page as a hidden field <htm:hidden
>> > > property="test1":>
>> > > like this u can remain in the same page and invoke only your action
>> when
>> > > the returned result is ok
>> > >
>> > > wish i was clear
>> > >
>> > > Regards
>> > > Elyes
>> > >
>> > > }
>> > >
>> > >
>> > >
>> > > 2009/4/21 Stefano <elste...@gmail.com>
>> > >
>> > > have u solved?
>> > >>
>> > >> i've the same issues to do.
>> > >>
>> > >>
>> > >> On Mon, Apr 20, 2009 at 16:29, elyes sallem <elyes.sal...@gmail.com>
>> > >> wrote:
>> > >>
>> > >> > Hello,
>> > >> > i have a struts application, which can be used by different user
>> > profile
>> > >> > among the profile, there is one who can access some pages
>> > >> > so if he try to access to one page , i will diplay a warning
>> message
>> > in
>> > >> the
>> > >> > depart page
>> > >> > so, i wanna know , after checking the user profile in the action,
>> how
>> > >> can i
>> > >> > forward him to the source page, i.e he remains in the same page,
>> and i
>> > >> will
>> > >> > display a warning message to inform him that this page is
>> inaccessible
>> > >> >
>> > >> >
>> > >> > Thanks
>> > >> > Regards
>> > >> > Elyes
>> > >> >
>> > >>
>> > >>
>> > >>
>> > >> --
>> > >> Stefano
>> > >>
>> > >
>> > >
>> > >
>> > > --
>> > > Elyes.
>> > >
>> >
>> >
>> >
>> > --
>> > Elyes.
>> >
>>
>>
>>
>> --
>> Jim Kiley
>> Senior Technical Consultant | Summa
>> [p] 412.258.3346
>> http://www.summa-tech.com
>>
>
>
>
> --
> Elyes.
>
--
Elyes.
