On Wed, 14 Jul 2004 08:16:51 +1000, Ben Alex <[EMAIL PROTECTED]> wrote: > > > Patrick Burleson wrote: > > >I posted the following question to the Sitemesh list. Thought I would > >see if anyone here also had any experience getting Acegi and Sitemesh > >to play nice together. > > > >----------------------------- > > > >Hello all, > > > >I am working on an project that is using Sitemesh for decorating > >pages. I am also using the Acegi Security System for Spring. > > > >What's really odd is, as long as the Sitemesh filter is in the chain, > >for some reason, everything goes through my Filter Chain twice. And when > >this happens, the first request does the Acegi stuff correctly, > >storing the Authentication object it uses into the Session and > >removing it from the current SecureContext (again, one of it's > >objects). But, seemingly in the same Filter chain, this gets run > >again, and since the Authentication object has been removed from the > >SecureContext, Acegi ends up putting null into the session for the > >Authentication object and now my authentication is lost. This means > >for every page reqeust in a secured area, the user is sent back to the > >login page. > > > >Once I take Sitemesh out of the filter chain, everything works as expected? > > > >Any thoughts? Anything more I need to add to help figure this out? > > > >Thanks, > >Patrick > > > > > > > Hi Patrick > > Are you using a recent CVS HEAD snapshot? There were some issues with > encoded passwords and caching in the 0.5 series releases. If you're > using CVS HEAD, would you mind posting a debug-level log from the Acegi > Security classes? > > As an aside, I use SiteMesh successfully with Acegi Security on a > project, but with BASIC (not form) authentication. > > Best regards > Ben >
Ben, I have a follow up to this that should be on the list. I am willing to bet you weren't using a recent version of Weblogic with code that worked? I've gotten it to work with Jboss/Jetty and Resin since going through my investigation about what was going on. It's just that very exspensive app server so many pay so much money for doing wonky things. Thanks, Patrick ------------------------------------------------------- This SF.Net email sponsored by Black Hat Briefings & Training. Attend Black Hat Briefings & Training, Las Vegas July 24-29 - digital self defense, top technical experts, no vendor pitches, unmatched networking opportunities. Visit www.blackhat.com _______________________________________________ Acegisecurity-developer mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
