You are viewing a plain text version of this content. The canonical link for it is here.
Posted to user@struts.apache.org by Asad Habib <ah...@engin.umich.edu> on 2006/10/31 05:05:02 UTC
Best Practices for Form-Based Authentication With Struts
What is the best way to authenticate a user with Struts? I have a table in
my database which holds the credentials for valid users and this table
needs to be checked when a user trys to log in via a form. I am also using
Hibernate as an ORM. Any help would be appreciated. Thanks.
- Asad
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
For additional commands, e-mail: user-help@struts.apache.org
Re: Best Practices for Form-Based Authentication With Struts
Posted by Asad Habib <ah...@engin.umich.edu>.
Thanks Li. Is the use of filters good practice as well? And what about
container-managed authentication using j_security_check?
- Asad
On Tue, 31 Oct 2006, Li wrote:
> you can use form authentication (JDBCRealm based) or JAAS. You may have to
> choose a cipher (e.g. md5 or sha-1). Besides that, you 'd enable SSL.
>
>
>
> On 10/31/06, Asad Habib <ah...@engin.umich.edu> wrote:
>>
>> What is the best way to authenticate a user with Struts? I have a table in
>> my database which holds the credentials for valid users and this table
>> needs to be checked when a user trys to log in via a form. I am also using
>> Hibernate as an ORM. Any help would be appreciated. Thanks.
>>
>> - Asad
>>
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
>> For additional commands, e-mail: user-help@struts.apache.org
>>
>>
>
>
> --
> When we invent time, we invent death.
>
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
For additional commands, e-mail: user-help@struts.apache.org
Re: Best Practices for Form-Based Authentication With Struts
Posted by Li <am...@gmail.com>.
you can use form authentication (JDBCRealm based) or JAAS. You may have to
choose a cipher (e.g. md5 or sha-1). Besides that, you 'd enable SSL.
On 10/31/06, Asad Habib <ah...@engin.umich.edu> wrote:
>
> What is the best way to authenticate a user with Struts? I have a table in
> my database which holds the credentials for valid users and this table
> needs to be checked when a user trys to log in via a form. I am also using
> Hibernate as an ORM. Any help would be appreciated. Thanks.
>
> - Asad
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
> For additional commands, e-mail: user-help@struts.apache.org
>
>
--
When we invent time, we invent death.