Here are some hints about securing your application:

Struts runs in J2EE, so you can use J2EE security, aka CMA:

* WEB.XML * One Containers Realms

Depending on your functional requirements, additional Java security packages exist such as:

Acegi - article describes implementation without Spring

* (Overview) * (Tutorial)


* * (Using JAAS with Struts)

Pow2Acl - has not been updated since 2002


SecurityFilter - example modules explain how to use with JDBC


Struts Menu -


ApplicationSecurity (last edited 2009-09-20 23:12:17 by localhost)