I just want to access the session... nothing more. I can tell they are logged in - but not who they are, I just need the
string.
Now, I guess because it looks for the context to do certain things, doesn't mean I can't write a new method that just grabs the session tied to the request (without a forum context?) and returns a value?
Otherwise, looking at .page and a freemarker solution, what is a 'hello world' implementation:
helloworld.page
That will grab the context, pull in the session, and just <# if logged > lolcats ${session.username} <# else > no lulz <#end if>
Not sure of the syntax, but that is something I am looking to do.
Thanks for any help you can offer, even if you just point me to a simple and useful existing page and how it is mapped..
monroe wrote:Sorry, AFAIK, there is no easy way to do what you want.
jForum's security is specific to the *.page calls (which use the jForum servlet to define the security context). It is not designed to be a security mechanism for JSP files in the same webapp as jForum or in another webapp.
But, FWIW, it can use other globlal security mechanisms via SSO. Given that you have two separate web apps (the Root webapp and the jForum webapp) with the need to have SSO between them, I suggest looking at third party SSO solutions (like Tomcat's J2EE security based SSO solution).
[originally posted on jforum.net by jforumapp]