Spring Security and Struts 2

Question

Spring Security and Struts 2

I have a struts2 s action @Secured({"ROLE_ADMIN"})to protect the execute method. In the execute method, I assign the message to a member variable of the action, then return SUCCESS and end on the jsp page. On the page, I retrieve the action member variable with <sproperty>.

private String greeting;

public String execute() throws Exception {
    this.greeting="Hello";
    return SUCCESS;
}

// getters and setters for greeting
...

<s:property value="greeting" />

The problem is when there is a protected annotation, jsp does not show anything for the member variable, but when @Secureddeleted, the whole thing behaves correctly and shows the message that was set to the member variable.

Actual security seems to be working fine, but when it is enabled using annotation, the member variable (or perhaps an action instance) does not get on the value stack.

I do not see error messages.

+3

java spring-security struts

Thanksforfish 23 . '09 10:03

1

Horia Chiorean · Answer 1 · 2009-11-06T07:34:14+0000

, <s:property value="greeting" /> "ROLE_ADMIN", SecurityContextHolder.getContext().

, " " , , . , http, HttpSessionContextIntegrationFilter.

, , Spring , , , .

Spring Security and Struts 2

More articles: