aspose file tools
The moose likes Struts and the fly likes User Authorisation based on Roles Big Moose Saloon
  Search | Java FAQ | Recent Topics
Register / Login


Win a copy of Arduino in Action this week in the General Computing forum!

A special promo: Enter your blog post or vote on a blogger to be featured in an upcoming Journal
JavaRanch » Java Forums » Frameworks » Struts
Reply Bookmark "User Authorisation based on Roles" Watch "User Authorisation based on Roles" New topic
Author

User Authorisation based on Roles

Prakash Mani - Attur
Ranch Hand

Joined: Oct 08, 2009
Posts: 100
posted private message
0
Quote
I have a big problem in my application.. Please reply...

My application has ten modules.. There are 13 Roles..Each one has different access..Say Admins can access all the ten modules.. Call center people can access only three modules(say mod1,mod2,mod3).. The problem is if the call center people know the url for mod4 or mod5 he can access that modules.. But for his role it is denied to access the other modules...

How to keep stop the other roles form accessing the other modules...
The main problem is i should not use the web.xml to define roles..Is there any way to deny access using session???
 
I agree. Here's the link: http://zeroturnaround.com/jrebel - it saves me about five hours per week
 
subject: User Authorisation based on Roles
 
Similar Threads
How to access a bean in a web application
Security in JSF
Outsourced call centres and credit card info
Which Design pattern to use ?
JVM Log File Aggregator