}
public void allows(HttpRequest request, ActionWrapper actionWrapper) {
if (needsLogin(actionWrapper.getCompleteModuleName(), actionWrapper.getActionName())) {
HttpSession session = (HttpSession) request.getSession();
if (session == null || !session.isValid()) {
throw new NotAllowedException(this.getClass().getSimpleName() + " refused access to " + actionWrapper);
} else {
if(session.getValue(_sessionUserTag) == null) {
throw new NotAllowedException(this.getClass().getSimpleName() + " refused access to " + actionWrapper);
}
}
}
}