Menu

#3 Authentication filter

First_release
open
Plamen Tanov
Controller (5)
5
2009-03-25
2009-03-25
Plamen Tanov
No

Check for every request if session has credentials and sends to login screen if not present. If current page is login - invalidate session (to logout simply move to login page).
Check is done via current page and rules (loaded from XML) like: page (user role, requests/mannaged beans). To permit access user must have specified user role and requests/mannaged beans loaded.

Discussion

Log in to post a comment.

Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.