[jboss-user] [JBoss Seam] - What's the best way to secure "user" pages (login)?
SmokingAPipe
do-not-reply at jboss.com
Fri Aug 18 05:18:09 EDT 2006
Like all other web apps out there, we have Users who can sign up and get a password, and then they log in. I have a handy LoginAction session bean which handles the login part of it. It checks the password and if the user si correct, the user is installed in the session.
Back in the days of servlets, I would always have a simple authentication filter that would just look in the session to see if this user is logged in.
Is that still the best way to do this, or is there some nicer way?
I was thinking of using JAAS but that looked like a nightmare of complexity compared to a plain old Filter.
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3965984#3965984
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3965984
More information about the jboss-user
mailing list