struts-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Alan P Sexton <>
Subject Role bean
Date Sat, 19 Oct 2002 22:56:50 GMT

Dear people,

I know I am probably being stupid again but I can't figure this: I am
not currently using container managed security and do intend to switch
eventually but, for the moment, I would like to be able to set the user
role programmatically from within my app. I found Ted's advice below:
For customized security, place a role bean in session for access by
custom tags and other resources

The standard security model is exposed through methods on the
RequestUtils bean. If your security system is not fully integrated with
the standard model, provide your own bean in the session with similar
methods, or extend the ActionController to add this bean to each
request. Custom tags, like those provided by the Jakarta Tagibs request
library, can then access your bean instead of the standard RequestUtil

This seems perfect except I can't find the bean Ted is talking about:
RequestUtils in the Tomcat 4.1.12 source doesn't seem to refer to roles
at all. I checked the Taglibs source and the isUserInRole method just
does the obvious: calls isUserInRole() on the request.

Can anyone show me how to do it?


Alan P. Sexton,
University of Birmingham
School of Computer Science
Edgbaston, Birmingham B15 2TT, England

To unsubscribe, e-mail:   <>
For additional commands, e-mail: <>

View raw message