struts-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Paul Thomas <p...@tmsl.demon.co.uk>
Subject Re: Webapp Security?
Date Thu, 03 Jul 2003 11:23:23 GMT

On 02/07/2003 18:53 David Erickson wrote:
> Is it based on using security restraints and having all your users set
> into
> groups in the tomcat-users.xml file?  If so our problem is we don't want
> to
> have users based into groups but want to give permissions to users
> individually to many different things.. and we want to store our users in
> a
> database rather than tomcat's xml file.. if I am mistaken on how this
> works
> please correct me =)  (I havn't actually looked at it, I've just looked
> at
> tomcat's security restraint stuff before)

Just set up a JDBC realm for your context and use roles. A role can be as 
fine or coarse grained as you like. Then just write an admin app which 
allows you assign roles to users. It's easy.

-- 
Paul Thomas
+------------------------------+---------------------------------------------+
| Thomas Micro Systems Limited | Software Solutions for the Smaller 
Business |
| Computer Consultants         | 
http://www.thomas-micro-systems-ltd.co.uk   |
+------------------------------+---------------------------------------------+

---------------------------------------------------------------------
To unsubscribe, e-mail: struts-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: struts-user-help@jakarta.apache.org


Mime
View raw message