Security with Struts

G

GuyBrush Treepwood

I'm making a web-based bookmark management system, using Struts.
To store bookmarks, one needs a useraccount. The link to your bookmarks
only is visible when you are logged in.

jsp excerpt:

<logic:present name="accountBean" scope="session">
<logic:equal name="accountBean" property="authenticated"
value="true" scope="session">
<html:link page="/service/signoff.do">Sign Off</html:link>|
<html:link page="/service/editAccountForm.do">Account</html:link>|
<html:link page="/tofillin">Preferences</html:link>|
<html:link page="/tofillin">Bookmarks</html:link>
</logic:equal>
</logic:present>


My question is: is it possible to view another user's bookmarks, without
knowing his password? Or is this enough security?
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Jstl <c:if> 4
requestparamater is property of bean 1
Struts - Getter method 6
Struts - Problem with nested iteration or double iteration 5
Struts - multiple actions for same checkboxes 1
Retrieving data from a hashmap from within a JSP 1
[Struts] Problem with setAttribute and <logic:present> 2
Struts Help 1

Members online

No members online now.
Total: 26 (members: 1, guests: 25)
Robots: 454

Forum statistics

Threads
473,770
Messages
2,569,583
Members
45,074
Latest member
StanleyFra

Latest Threads

Top