What security features are available in Struts

I am tasked with developing a web application and am thinking of using the Struts framework as it seems to be a standard and is easy to implement.

However, before making a decision I need to know the security features available in Struts.

Is there effective ways to handle the OWASP Top 10 using Struts? And if so, how would I accomplish it?

Answers


Struts is there to offer you a MVC framework and it has limited security features, e.g. you can map roles to actions. I will recommend you to look into something more full-fledged like the Spring Security (formerly Acegi).

yc


Need Your Help

Class with parent class has many items - not possible with mapping-by-code

nhibernate inheritance nhibernate-mapping mapping-by-code

I'm having a problem with nHibernate: If an entity inherits from a base entity, then this child entity cannot be referenced by another entity.

Keeping alive PostedFile.InputStream (ASP.NET)

c# asp.net file-upload

Maybe it's the worst practice in the world, but I was wondering wich's the best way to "keep alive" the InputStream of the FileUpload Control.

About UNIX Resources Network

Original, collect and organize Developers related documents, information and materials, contains jQuery, Html, CSS, MySQL, .NET, ASP.NET, SQL, objective-c, iPhone, Ruby on Rails, C, SQL Server, Ruby, Arrays, Regex, ASP.NET MVC, WPF, XML, Ajax, DataBase, and so on.