You are viewing a plain text version of this content. The canonical link for it is here.

Posted to user@struts.apache.org by "Emaho, Ghoot" <Gh...@PETROTECHNICS.co.uk> on 2002/03/06 13:12:01 UTC

RE: Role-based Validation ACTION ! Extension Question

Matt

Thanks for that. My mistake - i did mean the action extension !

Your answer didnt really tell me anything - sorry ! Mabe you can try and redescribe your point.

My point is that if you can achieve all that is needed via the web.xml, then why have/use the action extension. I figured there might be some other benefit I was unaware of. 

The only thing I can think of is that for programmatic security stuff, Action classes have to do a bit of work to get the stuff from the web.xml. But I'm not sure this is really a problem. If you can provide any clearer reasons for using the extension id appreciate that,

Thanks

Ghoot

> -----Original Message-----
> From: Matt Raible [mailto:matt_raible@yahoo.com]
> Sent: 05 March 2002 20:54
> To: Struts Users Mailing List
> Subject: Re: Role-based Validation Extension Question
> 
> 
> Do you mean role-based actions extension?  I know that this 
> extension allows
> you to configure allowed roles to access each action.  Yes, 
> you can do it in
> your web.xml, but usually folks just protect *.do or /do/* 
> and create an
> appropriate mapping - and do all other configuring in web.xml.
> 
> Matt
> 
> --- "Emaho, Ghoot" <Gh...@PETROTECHNICS.co.uk> wrote:
> > Hi,
> >  
> > I think I might be missing something here. Can someone tell 
> me what the
> > Role-based Validation extension gives you over, say, 
> setting security
> > restraints in the web.xml ?
> >  
> > I can set constraints on individual actions by mapping them 
> in the web.xml.
> > So what else does the extension give the developer ? 
> >  
> > This isnt a criticism, i just need someone to point it out 
> to me. For the
> > life of me I cant figure out what else you get, and i ant 
> see any reason to
> > use it at the moment.
> >  
> > Anyone who can point out the wood amongst the trees will be 
> thanked kindly !
> >  
> > Cheers
> >  
> > Ghoot Emaho
> > Development Team Leader
> > Petrotechnics  <http://www.petrotechnics.co.uk/> Ltd
> > 
> >  
> > 
> 
> 
> __________________________________________________
> Do You Yahoo!?
> Try FREE Yahoo! Mail - the world's greatest free email!
> http://mail.yahoo.com/
> 
> --
> To unsubscribe, e-mail:   
> <ma...@jakarta.apache.org>
> For additional commands, e-mail: 
> <ma...@jakarta.apache.org>
> 
> 

--
To unsubscribe, e-mail:   <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>

RE: Role-based Validation ACTION ! Extension Question

Posted by Matt Raible <ma...@yahoo.com>.

I think the role-based actions extension makes it easier for sites that have
hundreds of actions.

Yes, you are correct in that everything can be done in web.xml.

Matt

--- "Emaho, Ghoot" <Gh...@PETROTECHNICS.co.uk> wrote:
> Matt
> 
> Thanks for that. My mistake - i did mean the action extension !
> 
> Your answer didnt really tell me anything - sorry ! Mabe you can try and
> redescribe your point.
> 
> My point is that if you can achieve all that is needed via the web.xml, then
> why have/use the action extension. I figured there might be some other
> benefit I was unaware of. 
> 
> The only thing I can think of is that for programmatic security stuff, Action
> classes have to do a bit of work to get the stuff from the web.xml. But I'm
> not sure this is really a problem. If you can provide any clearer reasons for
> using the extension id appreciate that,
> 
> Thanks
> 
> Ghoot
> 
> > -----Original Message-----
> > From: Matt Raible [mailto:matt_raible@yahoo.com]
> > Sent: 05 March 2002 20:54
> > To: Struts Users Mailing List
> > Subject: Re: Role-based Validation Extension Question
> > 
> > 
> > Do you mean role-based actions extension?  I know that this 
> > extension allows
> > you to configure allowed roles to access each action.  Yes, 
> > you can do it in
> > your web.xml, but usually folks just protect *.do or /do/* 
> > and create an
> > appropriate mapping - and do all other configuring in web.xml.
> > 
> > Matt
> > 
> > --- "Emaho, Ghoot" <Gh...@PETROTECHNICS.co.uk> wrote:
> > > Hi,
> > >  
> > > I think I might be missing something here. Can someone tell 
> > me what the
> > > Role-based Validation extension gives you over, say, 
> > setting security
> > > restraints in the web.xml ?
> > >  
> > > I can set constraints on individual actions by mapping them 
> > in the web.xml.
> > > So what else does the extension give the developer ? 
> > >  
> > > This isnt a criticism, i just need someone to point it out 
> > to me. For the
> > > life of me I cant figure out what else you get, and i ant 
> > see any reason to
> > > use it at the moment.
> > >  
> > > Anyone who can point out the wood amongst the trees will be 
> > thanked kindly !
> > >  
> > > Cheers
> > >  
> > > Ghoot Emaho
> > > Development Team Leader
> > > Petrotechnics  <http://www.petrotechnics.co.uk/> Ltd
> > > 
> > >  
> > > 
> > 
> > 
> > __________________________________________________
> > Do You Yahoo!?
> > Try FREE Yahoo! Mail - the world's greatest free email!
> > http://mail.yahoo.com/
> > 
> > --
> > To unsubscribe, e-mail:   
> > <ma...@jakarta.apache.org>
> > For additional commands, e-mail: 
> > <ma...@jakarta.apache.org>
> > 
> > 
> 
> --
> To unsubscribe, e-mail:   <ma...@jakarta.apache.org>
> For additional commands, e-mail: <ma...@jakarta.apache.org>
> 


__________________________________________________
Do You Yahoo!?
Try FREE Yahoo! Mail - the world's greatest free email!
http://mail.yahoo.com/

--
To unsubscribe, e-mail:   <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>