struts-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Nelson, Laird" <Laird.Nel...@FMR.COM>
Subject RE: Struts/Container-Managed Authentication Question
Date Thu, 18 Jul 2002 17:51:13 GMT
> -----Original Message-----
> From: Craig R. McClanahan [mailto:craigmcc@apache.org]

(First off, I take your point, but am just stupid enough to think that an
implementation is nevertheless possible.  The following is just to spur
further thought.)

> What'a a "user" (i.e. what properties does one have)?

Exactly what it is in container-managed authentication, e.g. a Principal.
Container implementations could hold whatever the container decides they
should hold.  *That* data would *not* be portable across containers--only
the Principalness would be, and the addUser(Principal) method (or some
such).

> What's a "role"?

Exactly what it is in container-managed authentication, e.g. a String.

> How about "groups"?

Groups are roles, just as they are in container-managed authentication.

> Oh, and now I need SSL certificates.

No, not necessarily, because container-managed authentication via the
mechanisms supported out of the box does not need them.

(And so on.)

Cheers,
Laird


--
To unsubscribe, e-mail:   <mailto:struts-user-unsubscribe@jakarta.apache.org>
For additional commands, e-mail: <mailto:struts-user-help@jakarta.apache.org>


Mime
View raw message