[#APF-737] Ajax4JSF doesn't work when user not signed in - AppFuse JIRA

AppFuse

Ajax4JSF doesn't work when user not signed in

Created: 25/Apr/07 11:36 AM Updated: 26/Apr/07 04:18 PM Resolved: 26/Apr/07 04:18 PM

Component/s:

Security, Web - JSF

Affects Version/s:

2.0-M4

Fix Version/s:

2.0-M5

Description

« Hide

Fix is to add a new line in security.xml:

    <bean id="filterInvocationInterceptor" class="org.acegisecurity.intercept.web.FilterSecurityInterceptor">
        <property name="authenticationManager" ref="authenticationManager"/>
        <property name="accessDecisionManager" ref="accessDecisionManager"/>
        <property name="objectDefinitionSource">
            <value>
                PATTERN_TYPE_APACHE_ANT
                /activeUsers.*=admin
                /clickstreams.jsp*=admin
                /flushCache.*=admin
                /passwordHint.html*=ROLE_ANONYMOUS,admin,user
                /myaccount/*.html*=admin,user
                /reload.*=admin
                /signup.html*=ROLE_ANONYMOUS,admin,user
                /ajax4jsf.html*=ROLE_ANONYMOUS,admin,user
                /signup/*.html*=ROLE_ANONYMOUS,admin,user
                
                /a4j.res/*.html*=ROLE_ANONYMOUS,admin,user
                /users.html*=admin
                /**/*.html*=admin,user
            </value>
        </property>
    </bean>

Found, reported and fixed by Sion Smith.

Sort Order:

2652 by Matt Raible (1 file)

26/Apr/07 04:18 PM (39 months, 16 days ago)

~~APF-737~~: Added line so Ajax4JSF will work when not logged in

appfuse: trunk/web/common/src/main/webapp/WEB-INF/security.xml 2652

(+1 -0) diffs

Matt Raible made changes - 26/Apr/07 04:18 PM

Field	Original Value	New Value
Status	Open [ 1 ]	Resolved [ 5 ]
Resolution		Fixed [ 1 ]