History | Log In     View a printable version of the current page.  
   HOME       BROWSE PROJECT       FIND ISSUES   
    QUICK SEARCH:  
Issue Details (XML | Word | Printable)

Key: APF-1100
Type: Bug Bug
Status: Resolved Resolved
Resolution: Fixed
Priority: Minor Minor
Assignee: Matt Raible
Reporter: Alex Coles
Votes: 0
Watchers: 0
Operations

If you were logged in you would be able to see more operations.
AppFuse

Error in security.xml XML comments, suggesting user comment out wrong line if not using JSF

Created: 24/Oct/08 10:41 AM   Updated: 12/Dec/08 12:27 AM
Component/s: Security
Affects Version/s: 2.0.2
Fix Version/s: 2.1


 Description  « Hide
Looking at the following lines of security.xml, the comment should either read "OK to remove line above" OR should be moved up one line.

        <intercept-url pattern="/a4j.res/*.html*" access="ROLE_ANONYMOUS,ROLE_ADMIN,ROLE_USER"/>
        <!-- APF-737, OK to remove line below if you're not using JSF -->
        <intercept-url pattern="/**/*.html*" access="ROLE_ADMIN,ROLE_USER"/>

The comment refers to not needing Ajax4JSF (a4j) if not using JSF.

intercept /**/*.html should NOT be removed - it breaks things by gives unauthenticated users access to non-admin parts of an application.



 All   Comments   Change History   FishEye      Sort Order:
There are no comments yet on this issue.

Powered by a free Atlassian JIRA non-profit license for AppFuse. Try JIRA - bug tracking software for your team.
Atlassian JIRA the Professional Issue Tracker. (Enterprise Edition, Version: 3.10-#260) - Bug/feature request - Contact Administrators