my dog learned polymorphism
The moose likes JSF and the fly likes JSF, roles and security-constraint Big Moose Saloon
  Search | Java FAQ | Recent Topics
Register / Login
JavaRanch » Java Forums » Java » JSF
Reply Bookmark "JSF, roles and security-constraint" Watch "JSF, roles and security-constraint" New topic
Author

JSF, roles and security-constraint

Kev D'Arcy
Ranch Hand

Joined: Jul 26, 2001
Posts: 75
posted private message
0
Quote
Hi,

I just have a query about how to use JSF with roles and URLs restricted
by a security-constraint defined in the web.xml file. In non-JSF land this
is easy to use since the action of the form can be set to a particular URL
and the standard role based URL access will kick in to either allow or
prevent access to it depending on the role of the user.

Since JSF takes this control away from you, I'm now wondering if declarative
role based control is possible in JSF, or is it something that now has to be
done programatically in the code i.e. HttpServletRequest.isUserInRole(). My
hope was to use the declaritive method since it's easier to impliment.

Any thoughts?

Thanks,

Kev
 
I agree. Here's the link: jrebel
 
subject: JSF, roles and security-constraint
 
Similar Threads
Simple custom security in JSF app
Tomcat authentication and RACF
Access rights for jsf pages.
[Facelet & JSF Security] What do you think of this?
action="j_security_check"