The apache web site says:
"While Struts can work with any approach to user authentication and authoriaztion. Struts 1.1 will offer direct support for the standard Java Authentication and Authorization Service (JAAS). In Struts 1.1 (and the current nightly build, you can specify security roles on an action-by-action basis."
I cannot find any documentation on what they are talking about. The only way I know of using JAAS with Struts is by overriding the ActionServlet class. The material for that can be found at the
However, this approach is for Struts 1.02 I beleive.
So my question is where is this magical new support for JAAS in Struts 1.1? Please somebody show me the documentation that I am overlooking. I am very interested in this.