Hi Guys, Even if I have a StrutsConfig.xml. I will still have to write the security aspects, listners as part of web.xml right? sorry guys just trying to get some basics right!!
posted 8 years ago
What you are saying sounds basically correct (you using Struts 1.x?). You need to use a web.xml to tell your container about Struts (the ActionServlet). If you define your roles in web.xml you can then define your action mappings to restrict access based on the user's current role (using the roles attribute on the action tag).