Originally posted by Srinivasa Kakumanu:
In our project we are using Struts 1.1. So far we didn't had any security implemented. Trying to implement J2EE security using Form Based authentication and Custom User Regitry for authorization. I have been able to configure the CUR in WAS 5.1 server configuration. I see that when I try to login I see the CUR is authenticating it. Here is the issue I am having .....
When I try to go to http://localhost:9080/web, I see my home page displayed which is welcome screen that is shown after a user is logged in. All our jsps are not under WEB-INF.
- I have defined in web.xml in welcome-file list as /general/home .... this is the home page tile.
- <login-config>
<auth-method>FORM</auth-method>
<form-login-config>
<form-login-page>welcome.jsp</form-login-page>
<form-error-page>/general/errorpage.jsp</form-error-page>
</form-login-config>
</login-config>
welcome.jsp has simple statement that redirects to welcome.do that forwards to index page tile i.e my login page.
But what I don't understand is why the home page is displayed without being first redirected to my index tile? All the roles are defined in web.xml and groups are defined in ejb.xml. Can someone shed some light here? and direct me to some website that shows step by step how to implement J2EE security with Struts and tiles.