• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Jeanne Boyarsky
  • Ron McLeod
  • Paul Clapham
  • Liutauras Vilda
Sheriffs:
  • paul wheaton
  • Rob Spoor
  • Devaka Cooray
Saloon Keepers:
  • Stephan van Hulst
  • Tim Holloway
  • Carey Brown
  • Frits Walraven
  • Tim Moores
Bartenders:
  • Mikalai Zaikin

Struts Security. JAAS?

 
Ranch Hand
Posts: 755
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Hi Ranchers,

I'm about to build a struts application and since there would be many users from different departments, I wonder if there's such mechanism/plugin that can facilitate the application in term of security - authentication and *authorization* in particular.

My database is composed of users and groups. A user can belong to a group (eg accounting) and receive privileges/permissions.

my question is this: I have researched a bit about JAAS and I'm not sure if this is what I should implement. Can anyone advise on such mechanism that has been used already and think it should work for me?

thanks for any pointers
 
Ranch Hand
Posts: 4864
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
I'd suggest you read chapter 32 of the Sun J2EE tutorial for some good information on what your options are for setting up security in a web application.

If you decide to use the "container managed authentication" described in this document, Struts has a way of assigning roles to Action mappings. If you specify roles="x, y, z" in your action mapping, only users who have roles x, y, or z will be able to access the action. All others will be denied access.
 
Peter Primrose
Ranch Hand
Posts: 755
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
will do and return to this thread.

thanks Merrill
 
reply
    Bookmark Topic Watch Topic
  • New Topic