Now I wanna do login authentication over some protected resource, page or action. That being said, the page will redirect to login page if you access some protected resource without a login .There are 3 ways I can think of:
1. Use struts interceptor, the weak points are you have to configure for every protected action, and jsp pages can't be applied.
2. Use spring interceptor, the weak points are you still can't get jsp applied and get http session in the interceptor.
3.Use filter coming with Java EE. But the problem is url-pattern only supports wildcards , I just want to assign some certain protected jsp or action specifically, not all.
So who can offer a best practice for that? thanks a lot.