This week's book giveaway is in the OCMJEA forum. We're giving away four copies of OCM Java EE 6 Enterprise Architect Exam Guide and have Paul Allen & Joseph Bambara on-line! See this thread for details.
I am having a problem in deciding how to implement security in my web application. I have a set of action mappings in my Struts Config file which I only want available to "admin" users.
All of my user and role information is stored in a database. I have read about using web.xml to constrain certain url-patterns and using struts ActionMapping to deine roles. I am more confused afer this.
Any guidance about how to go about this would be appreciated.
This article offers what I believe to be a good solution for handling security in Struts. It involves extending the ActionMapping class with your own custom class. Hopefully, this article will at least give you some ideas about what is possible.