[#APF-737] Ajax4JSF doesn't work when user not signed in

AppFuse

Ajax4JSF doesn't work when user not signed in

Created: 25/Apr/07 11:36 AM Updated: 26/Apr/07 04:18 PM

Component/s:

Security, Web - JSF

Affects Version/s:

2.0-M4

Fix Version/s:

2.0-M5

Description

« Hide

Fix is to add a new line in security.xml:

<bean id="filterInvocationInterceptor" class="org.acegisecurity.intercept.web.FilterSecurityInterceptor">
        <property name="authenticationManager" ref="authenticationManager"/>
        <property name="accessDecisionManager" ref="accessDecisionManager"/>
        <property name="objectDefinitionSource">
            <value>
                PATTERN_TYPE_APACHE_ANT
                /activeUsers.*=admin
                /clickstreams.jsp*=admin
                /flushCache.*=admin
                /passwordHint.html*=ROLE_ANONYMOUS,admin,user
                /myaccount/*.html*=admin,user
                /reload.*=admin
                /signup.html*=ROLE_ANONYMOUS,admin,user
                /ajax4jsf.html*=ROLE_ANONYMOUS,admin,user
                /signup/*.html*=ROLE_ANONYMOUS,admin,user
                
                /a4j.res/*.html*=ROLE_ANONYMOUS,admin,user
                /users.html*=admin
                /**/*.html*=admin,user
            </value>
        </property>
    </bean>

Found, reported and fixed by Sion Smith.

All

Comments

Change History

FishEye

Sort Order:

There are no comments yet on this issue.