This is another one of my famous advice questions I'm afraid :)
I'm putting an app together using Struts and Hibernate - so far that side of things is going swimmingly well. Now it's time to add basic authentication to it. When a user is not logged in, they are classed as a"guest" and can access some services but not many. If a user is signed in, they can access all the features of the site.
What I'm looking for is opinions on the best way of handling authentication in this way. I haven't had to do it before and I figured it would be best to ask the experts on how they'd do it :)
I look forward to hearing from everyone :)
PS The high points is because usually a lot of people reply - I try to dish them out fairly across the board but if you're really concerned about getting points, you might wanna sit this one out hehe :)