JAAS restrict web page access

Hi,

I am planning to implement JASS autherization in my web application.

1. I want to restrict the role to access few certain jsp, servlet pages. What entry should i make in policy file, so that when the role tries to access that jsp file, it should automatically redirect user to some different jsp page.

2. I want to have some Access Control List in authorization, so that the logged in user has access to certain functions, product etc. How can i take help of JAAS.

I can created my own custom ACL and put the same in session. How its different from JAAS.

Thanks

Vinayak

[619 byte] By [vinayakat080a] at [2007-10-1 11:22:14]

«« XML comment question
»» Capture dates (other than weekends) given a date range

# 1

hi,you should look towards jGuard (jguard.sourceofrge.net) which enable easy JAAS integration into J2ee and wrap the jaas complexity.sincerly yours,Charles(jGuard team).

diabolo512a at 2007-7-10 3:52:41 >

top of Java-index,Security,Other Security APIs, Tools, and Issues...

# 2

oops, the right adress is:jguard.sourceforge.net:-)

diabolo512a at 2007-7-10 3:52:41 >

Java programming resources: FAQs, tutorials, compiler and browser download sites, documentation, books lists, IDEs, etc.

JAAS restrict web page access

Security New Topic

Security Hot Topic

Security

All Classified