I�ve seen in various projects I've worked, somtimes the designers prefer to use filters instead the built-in solution of the JEE web container (the security-constraint tag), so a ask, wich is more safe to use???
Thanks all.
If happen something bad in you life, don't ask God why it happened. Ask for what.
SCJP 5 (80%) - SCWCD 5 (91%) - SCBCD & SCJD coming soon...
They both use the same mechanisms, so if set up correctly they provide the same amount of security. The built-in stuff probably wasn't flexible enough for what those developers needed. I've long since abandoned container-managed security for almost all purposes, since it's rarely sufficient for what I need to do.