Best practice recommendation regarding role based views

**kwbr** · Oct 20th, 2005, 06:47 AM

Hi,

is there a recommended practice creating a login based web app with multiple views based on the role of the logged in user?

I have a login page where a user logs in. Now, the app should redirect the user to different areas. Let's say a user with the role Admin logs in, then all he sees is below /admin, a editor logs in and sees all pages under /editor.

Ok, honestly I am searching for a HOW-TO not a best practice recommandation...

Regards

**Ben Alex** · Nov 2nd, 2005, 04:43 AM

You'd be using AuthenticationProcessingFilter, which subclasses AbstractProcessingFilter. The latter has an alwaysUseDefaultTargetUrl. I'd set it to true, and specify the URL with the defaultTargetUrl property. If you need different redirects based on the roles held, write a JSP that uses the <authz> taglib and sends a response redirect to the browser.

Thread: Best practice recommendation regarding role based views

Thread Tools

Display

Best practice recommendation regarding role based views

Similar Threads

LDAPPasswordAuthenticationDao problem

Account based role for authorization.

Only Role Based security!!!!!!!!????????

Role based security and Spring

Views based on roles

Posting Permissions