global auth. for application

[Aljosa Mohorovic <al...@gmail.com>]

when creating struts app if entire app requires authorization how can
i check if user is logged in without having to check session vars in
every action?

-- 
Aljosa Mohorovic

http://www.revolucija.hr
Ivana Lucica 5
10000 Zagreb, Croatia

+385 (0)1 616 8414

---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
For additional commands, e-mail: user-help@struts.apache.org

Re: global auth. for application

[walidito <wa...@sgcib.com>]

What version of struts are you talking about?
In struts 2, I think an interceptor could help (that's what Im using), but I
'm not sure that it is a good practice.
Generally speaking, for struts 1.x or even struts2.x Spring could help :
here is a useful link
http://www.javaworld.com/javaworld/jw-01-2007/jw-0105-aop.html.
Other ideas/comments will be helpful.
thanks



Aljosa Mohorovic-3 wrote:
> 
> when creating struts app if entire app requires authorization how can
> i check if user is logged in without having to check session vars in
> every action?
> 
> -- 
> Aljosa Mohorovic
> 
> http://www.revolucija.hr
> Ivana Lucica 5
> 10000 Zagreb, Croatia
> 
> +385 (0)1 616 8414
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
> For additional commands, e-mail: user-help@struts.apache.org
> 
> 
> 

-- 
View this message in context: http://www.nabble.com/global-auth.-for-application-tf2946649.html#a8241344
Sent from the Struts - User mailing list archive at Nabble.com.


---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
For additional commands, e-mail: user-help@struts.apache.org

Re: global auth. for application

[Mikolaj Rydzewski <mi...@ceti.pl>]

Aljosa Mohorovic wrote:
> i'm using struts 1.2.9 and maybe we will use container-managed
> authorization, but my question is also related to similar tasks like
> howto implement statistics.
> extending request processor will solve all current problems.
Switch to 1.3.x. You won't have to extends request processor, instead 
you will 'inject' your code in the command's chain. It'll be much more 
elegant.

-- 
Mikolaj Rydzewski <mi...@ceti.pl>

Re: global auth. for application

[Aljosa Mohorovic <al...@gmail.com>]

i'm using struts 1.2.9 and maybe we will use container-managed
authorization, but my question is also related to similar tasks like
howto implement statistics.
extending request processor will solve all current problems.

thanks to all for help.


On 1/9/07, Christopher Schultz <ch...@christopherschultz.net> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Aljosa,
>
> Aljosa Mohorovic wrote:
> > when creating struts app if entire app requires authorization how can
> > i check if user is logged in without having to check session vars in
> > every action?
>
> Is there a reason not to use the container-managed authorization
> provided by the app server?
>
> - -chris

-- 
Aljosa Mohorovic

http://www.revolucija.hr
Ivana Lucica 5
10000 Zagreb, Croatia

+385 (0)1 616 8414

---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
For additional commands, e-mail: user-help@struts.apache.org

Re: global auth. for application

[Christopher Schultz <ch...@christopherschultz.net>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Aljosa,

Aljosa Mohorovic wrote:
> when creating struts app if entire app requires authorization how can
> i check if user is logged in without having to check session vars in
> every action?

Is there a reason not to use the container-managed authorization
provided by the app server?

- -chris

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFFo8V69CaO5/Lv0PARAtMYAJ9eLx/odYdpjJ3Z6yIxE1v/XgvhQACfS1y3
fiwRv1GbHUzWQRvyTL6rxXc=
=d6ZV
-----END PGP SIGNATURE-----

---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
For additional commands, e-mail: user-help@struts.apache.org