struts-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Martin Gainty <>
Subject Re: Struts 1.3 and OAuth2
Date Sun, 10 Mar 2019 13:29:37 GMT
attempts at direct access to struts webapp should automatically redirect the request to an
once fully authenticated the original-request is then sent to "struts-app"

JSR-286 portlet-api frameworks have handled role assignment and authorisation for better part
of 10 years
Here is a partial list of JSR-286 portlet-api frameworks you can use:
List of enterprise portal vendors - Wikipedia<>
This is a list of notable vendors of enterprise portals.An enterprise portal is a framework
for integrating information, people and processes across organizational boundaries.

the HTTP Header LOCATION is where you want to redirect to on seeing 302 MOVED TEMP
 if (code == HttpURLConnection.HTTP_MOVED_TEMP)
   System.out.println("doPost response code is 302 (HTTP_MOVED_TEMP) about to getHeaderField(\"Location\")");
   token = urlc.getHeaderField("Location");
   System.out.println("doPost token="+token);

those details should be handled by JSR-286 portlet server

since this has nothing to do with using struts  we can continue this offline as necessary


From: Asad Habib <>
Sent: Sunday, March 10, 2019 3:25 AM
To: Struts Users Mailing List
Subject: Struts 1.3 and OAuth2

Has anyone successfully been able to integrate OAuth2 to authorize calls
made to an API built using Struts 1.3? I haven't seen any examples of this
online. Any help would be appreciated. Thanks.

  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message