You are viewing a plain text version of this content. The canonical link for it is here.

Posted to user@struts.apache.org by Pham Anh Tuan <an...@ichi-corp.jp> on 2005/05/18 12:16:18 UTC

[HELP] How to restrict access to certain mapping action ???

Hi all,

I don't know how to restrict access to certain mapping action?

Ex:
I have action: /user/myaction.do
and I don't want user directly access to above action.

Could I use web.xml to solve this problem.

something like:

<security-constraint>

<web-resource-collection>

<web-resource-name>

Restrict access to JSP pages

</web-resource-name>

<url-pattern>*.jsp</url-pattern>

</web-resource-collection>

<auth-constraint>

<description>

With no roles defined, no access granted

</description>

</auth-constraint>

</security-constraint>

Thanks for ur reading.

Anh Tuan