This week's book giveaway is in the OCMJEA forum.
We're giving away four copies of OCM Java EE 6 Enterprise Architect Exam Guide and have Paul Allen & Joseph Bambara on-line!
See this thread for details.
The moose likes Servlets and the fly likes Users Authentication Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of OCM Java EE 6 Enterprise Architect Exam Guide this week in the OCMJEA forum!
JavaRanch » Java Forums » Java » Servlets
Bookmark "Users Authentication" Watch "Users Authentication" New topic
Author

Users Authentication

JiaPei Jen
Ranch Hand

Joined: Nov 19, 2000
Posts: 1309
I have four roles; administrator, contributor, editor, and advisor. All registered members fall into one or more of these four roles and all registered members are kept in a database.
1. Administrators (least restrictive) can access all web resources.
2. Contributors can access the "edit" and "delete" functions as well as the "view" function.
3. editors and advisors (most restrictive) can only access the "view" function.
How do I prepare my web.xml file? For example:

Thank you very much in advance.
Rufus BugleWeed
Ranch Hand

Joined: Feb 22, 2002
Posts: 1551
Have you looked at Web-Tier Security in the J2EE tutorial recently?
The DTD for web.xml and the servlet specification also have some comments that are helpful.
Did this help?
 
It is sorta covered in the JavaRanch Style Guide.
 
subject: Users Authentication