send me email personally if you have problems with this!
it's of mailing list subject! ;)
--Alen
----- Original Message -----
From: "Viral_Thakkar" <Viral_Thakkar@(protected)>
To: "Struts Users Mailing List" <struts-user@(protected)>
Sent: Monday, August 04, 2003 3:53 PM
Subject: RE: Best place to hook the Security Call
Please let me know which files need to develop for implementing the
security filter component which is available at www.securityfilter.org
-----Original Message-----
From: Vic Cekvenich [mailto:vic_cekvenich@(protected)]
Sent: Monday, August 04, 2003 7:14 PM
To: struts-user@(protected)
Subject: Re: Best place to hook the Security Call
The Struts tags support the getRole, etc.; which are part of JAAS.
Also, extending JAAS w/ Struts is easy, for example detecting a new
login and adding additional information. (all in the basicPortal.com
bestPractice Struts sample)
.V
sreekant_gottimukkala@(protected):
> So where does JAAS (Java Authentication and Authorization Service)
come
> into picture in the J2EE world ? The other day I was reading a
whitepaper
> that said STRUTS provides integration with JAAS. What would that mean
?
>
> Thanks
> Sreekant G.
> TCS AMBATTUR
>
>
>
> "Viral_Thakkar"
> <Viral_Thakkar@(protected)
Mailing List"
> fosys.com>
<struts-user@(protected)>,
>
<sreekant_gottimukkala@(protected)>
> 08/04/2003 06:51 cc:
> PM Subject: RE: Best
place to hook the Security Call
> Please respond to
> "Struts Users
> Mailing List"
>
>
>
>
>
>
> What I understood from the "Security Filter" component is that we need
> to extend the SimpleSecurityRealmBase class and need to override the
> methods specified in that class.
>
> But still I m not clear on the complete configuration ...i mean the
> exact steps to follow to use this filter component for A & A reqt.
>
> If anyone already implemented this filter then please guide me on the
> approach.... example code will be more useful...
>
> Thanks.
>
>
>
>
>
>
>
> -----Original Message-----
> From: Alen Ribic [mailto:alenr@(protected)]
> Sent: Monday, August 04, 2003 6:34 PM
> To: Struts Users Mailing List
> Subject: Re: Best place to hook the Security Call
>
> Security is really my week side but AFAIK your Container Manager
> Security
> does have certain container specific configurations and even
requirement
> for
> additional java classes to be coded.
>
> As I said "Security Filter" component has a small, simple realm
> interface
> that is portable across different servers.
>
> --Alen
>
>
> ----- Original Message -----
> From: <sreekant_gottimukkala@(protected)>
> To: "Struts Users Mailing List" <struts-user@(protected)>
> Sent: Monday, August 04, 2003 2:34 PM
> Subject: Re: Best place to hook the Security Call
>
>
>
>>I agree with Alen, but at the same time if all the containers are
>>supporting J2EE security standards then porting to different
>
> containers
>
>>should not be an issue. SecurityFilter as I just browsed through seems
>>interesting but all the latest J2EE containers will have to support
>
> Servlet
>
>>2.3 for using the same. Alternatively whatif I write my own security
>
> piece
>
>>by looking up LDAP for A&A (authentication and authorization) and this
>>piece would be called from some place in the STRUTS control flow so
>
> that
>
>>for everyrequest security would be validated.
>>
>>Thanks
>>Sreekant G.
>>TCS AMBATTUR
>>
>>
>>
>> "Alen Ribic"
>> <alenr@(protected)
>
> Mailing List"
>
>> >
>
> <struts-user@(protected)>
>
>> cc:
>> 08/04/2003 04:25 Subject: Re: Best
>
> place to
> hook the Security Call
>
>> PM
>> Please respond to
>> "Struts Users
>> Mailing List"
>>
>>
>>
>>
>>
>>
>>If I'm not mistaken, this approach is container specific hence would
>
> make
>
>>deployment on difference container(s) not as smooth as one would wish.
>>I may be wrong so please correct me! I'm not very clued up in this
>
> area.
> ;)
>
>>I have privilege working with servlet 2.3 and am now using
>
> SecurityFilter
>
>>component (www.securityfilter.org) to handle my auth. Very simple!
>>
>>--Alen
>>
>>
>>
>>>Best place would be using container J2EE security, such as JDBC
>
> realms.
>
>>>sreekant_gottimukkala@(protected):
>>>Which is the best place to hook the security call for an application
>
> in
>
>>the
>>
>>>STRUTS framework so that for every request security check is made.
>
> Does
>
>>>STRUTS provide integration with any Security framework ?
>>>
>>>thanks in advance.
>>>Sreekant G.
>>>
>>>
>>>
>>>
>>>
>
>
------------------------------------------------------------------------
>
>>>This mail was scanned by Interscan Virus Wall of Mailserver at
>
> Cathedral
>
>>Road TCS Chennai
>>
>>>
>>>
>>>
>
------------------------------------------------------------------------
>
>>>
> ---------------------------------------------------------------------
>
>>>To unsubscribe, e-mail: struts-user-unsubscribe@(protected)
>>>For additional commands, e-mail: struts-user-help@(protected)
>>
>>--
>>Vic Cekvenich,
>>Struts Instructor,
>>1-800-917-JAVA
>>
>>Advanced <a href ="baseBeans.com">Struts Training</a>, mentoring and
>>project recovery in North East.
>>Open Source <a href ="baseBeans.com">Portal Content Management</a>
>>basicPortal software.
>>
>>
>>
>>---------------------------------------------------------------------
>>To unsubscribe, e-mail: struts-user-unsubscribe@(protected)
>>For additional commands, e-mail: struts-user-help@(protected)
>>
>>
>>
>>---------------------------------------------------------------------
>>To unsubscribe, e-mail: struts-user-unsubscribe@(protected)
>>For additional commands, e-mail: struts-user-help@(protected)
>>
>>
>>
>>
>>
>>
>>
>
>
>
>
------------------------------------------------------------------------
> ----
> ----
>
>
>
>>---------------------------------------------------------------------
>>To unsubscribe, e-mail: struts-user-unsubscribe@(protected)
>>For additional commands, e-mail: struts-user-help@(protected)
>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: struts-user-unsubscribe@(protected)
> For additional commands, e-mail: struts-user-help@(protected)
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: struts-user-unsubscribe@(protected)
> For additional commands, e-mail: struts-user-help@(protected)
> (See attached file: InterScan_SafeStamp.txt)
>
>
>
>
>
------------------------------------------------------------------------
>
> ****** Message from InterScan E-Mail VirusWall NT ******
>
> ** No virus found in attached file InterScan_SafeStamp.txt
>
> This Message was scanned by Interscan Virus Wall of mailserver at
Cathedral Raod ,TCS Chennai
> ***************** End of message ***************
>
>
>
>
>
------------------------------------------------------------------------
>
> This mail was scanned by Interscan Virus Wall of Mailserver at
Cathedral Road TCS Chennai
>
>
>
>
------------------------------------------------------------------------
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: struts-user-unsubscribe@(protected)
> For additional commands, e-mail: struts-user-help@(protected)
--
Vic Cekvenich,
Struts Instructor,
1-800-917-JAVA
Advanced <a href ="baseBeans.com">Struts Training</a>, mentoring and
project recovery in North East.
Open Source <a href ="baseBeans.com">Portal Content Management</a>
basicPortal software.
---------------------------------------------------------------------
To unsubscribe, e-mail: struts-user-unsubscribe@(protected)
For additional commands, e-mail: struts-user-help@(protected)
---------------------------------------------------------------------
To unsubscribe, e-mail: struts-user-unsubscribe@(protected)
For additional commands, e-mail: struts-user-help@(protected)
---------------------------------------------------------------------
To unsubscribe, e-mail: struts-user-unsubscribe@(protected)
For additional commands, e-mail: struts-user-help@(protected)
