This week's book giveaway is in the Kotlin forum.
We're giving away four copies of Kotlin in Action and have Dmitry Jemerov & Svetlana Isakova on-line!
See this thread for details.
Win a copy of Kotlin in Action this week in the Kotlin forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic

Security  RSS feed

 
Anup Om
Ranch Hand
Posts: 62
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hello,

The struts2 app I am developing uses container based security (<security-constraint> in web.xml). But, the user registration page is unsecure.
Once the user reqisters successfully, he would have to access secured resources to perform further actions. when the user hits the secured resources' url, he is
being asked to authenticate again. I don't want that to happen. If a user is able to register successfully, I want to consider him as a authenticated user.

For now, I am calling HttpServletRequest's login() method to perform authentication in the user registeration action. But, this method is added in Servlet 3.
What are the other alternatives I have? How can I do it with Servlet 2.5?

Thanks for help in advance.
 
Jesus Mireles
Ranch Hand
Posts: 122
IntelliJ IDE Java Mac
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Have you looked into using Spring to authenticate you right after the registration
 
It is sorta covered in the JavaRanch Style Guide.
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!