Front Controller in jsf
[180 byte] By [Panks.Ta] at [2007-11-26 15:44:54] 
Can we write front controller in jsf..I need urgent help. If we can . then how.. or is there any other way around.?Message was edited by: Panks.T
# 1
JSF itself is implemented as front controller (the jsf servlet). What do you mean by "can we write a front controller"amitteva at 2007-7-8 22:04:02 >
# 2
Please clarify the problem/question/requirement. I really don't understand this.BalusCa at 2007-7-8 22:04:02 >
# 3
I mean
if any client tries to go to any other page ( without going through the login page ) he should be redirected back to login page.
I am a newbie to jsf , and i dont know jsp either. Is jsp, and struts a must to knowing jsf.
Do we need to make change to web.xml for this?
security-constraint>
<!-- protected resources -->
<web-resource-collection>
<url-pattern>/pages/protected/*</url-pattern>
</web-resource-collection>
<!-- required credentials -->
<auth-constraint>
<role-name>*</role-name>
</auth-constraint>
</security-constraint>
will changing these lines will help solve my purpose. How will the redirection to login page be handled.
I have absolutely no idea in this regard.
Thanks for replying
Panks.T
Panks.Ta at 2007-7-8 22:04:02 >
# 4
If the question is still not clear...
lemmet put it again.
I have resource , i want user to access those resource pages only after authentication through /index.jsp page.
if any user tries to access the protected resource , he should be asked to login through this index.page again and then reach the respective page he requested.
I dont want the coding to be repetitive in all jsp pages. Is there some controller servlet or something which acts at the front for all pages.
any ideas?
Panks.Ta at 2007-7-8 22:04:02 >
# 5
A filter is perfect for this. Do a Google search on "loginfilter" or so :)BalusCa at 2007-7-8 22:04:02 >
# 6
I'am using both a javax.servlet.Filter and a PhaseListener. The Filter controls access to Pages depending on the privileges of the current user, the PhaseListener checks some request parameters especially a token. Maybe it's possible and better to move the functionality of the Filter to the PhaseListener.
Found this:
http://www.nabble.com/OWASP-standards-t3040481.html
There is a additional link to
http://www.us.apachecon.com/presentations/TH19/TH19-OWASP-updated.ppt
which topic is
"Securing MyFaces Applications Against the OWASP Top Ten"
An example for Filter is found in "JavaServer Faces in Action" by Kito D. Mann in part 3 chapter 13.2 "Adding security".
Ingmara at 2007-7-8 22:04:02 >
# 7
Thanks...all...Your replies were indeed helpful.:)Panks.Ta at 2007-7-8 22:04:02 >
# 8
MY logic in the login Filter need to access FacesContext.getCurrentInstance() in the loginFilter that i Wrote.But when i try to do that , i get only null values.Then is there some way to access the same.Accessing FacesContext in the Filters?Panks.Ta at 2007-7-8 22:04:02 >
# 9
You can't access FacesContext in Filter because it will be initialised later in FacesServlet.
You can use HttpServletRequest.getPathInfo(). That will become the viewId of UIViewRoot. Don't forget that the viewId will change during navigation and you have to check permissions again in JSF.
Ingmara at 2007-7-8 22:04:02 >
# 10
You can precreate the FacesContext in a Filter or Servlet.Also see http://www.jsffaq.com/Wiki.jsp?page=HowToAccessFacesContextFromTheFilterOrServletBalusCa at 2007-7-8 22:04:02 >
# 11
Hi Panks T,I too got this requirement,if u got the solution please give the reply.it is very urgent for us,so please reply me asap,thanks in advance.ksk@kska at 2007-7-8 22:04:02 >
# 12
Don't bother to click at the link that is given above your reply.BalusCa at 2007-7-8 22:04:02 >
Enterprise & Remote Computing New Topic
Enterprise & Remote Computing Hot Topic
Enterprise & Remote Computing
All Classified
- Archived Forums
- Enterprise & Remote Computing
- Java Essentials
- Desktop
- Core
- Solaris Operating System
- Security
- Database Connectivity
- Java Mobility Forums
- Web & Directory Servers
- Development Tools
- Application & Integration Servers
- Java HotSpot Virtual Machine
- Other Topics
- E-Mail, Calendar, & Collaboration
- Developer Tools
- General
- Administration Tools
- Sun Hardware
- Storage Forums
- Java Enterprise System
- StarOffice
- Open Source Technologies
- BigAdmin
- Real-Time
- Java Coding