[
http://jira.magnolia-cms.com/browse/MAGNOLIA-1476?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=25918#action_25918
]
Grégory Joseph commented on MAGNOLIA-1476:
------------------------------------------
It should be fairly straightforward to implement a ForwardingClientCallback
instead, but I'm not convinced that's a good solution wrt SEO etc (the same
login page could show up with both 200 and 401)
The redirectClientCallback can use url parameters, so all that's left to do is
something along the lines of {{<form action="${request.backto}" ...>}} in your
login page.
Have a look at the javadoc for
{{info.magnolia.cms.security.auth.callback.RedirectClientCallback#setLocation}}
and the source of
{{info.magnolia.cms.security.auth.callback.RedirectClientCallbackTest#testTargetUrlIsFormattedWithEncodedRequestURL}}
> allow using a magnolia page as a login page
> -------------------------------------------
>
> Key: MAGNOLIA-1476
> URL: http://jira.magnolia-cms.com/browse/MAGNOLIA-1476
> Project: Magnolia
> Issue Type: Improvement
> Components: security
> Affects Versions: 3.0.2
> Reporter: Fabrizio Giustina
> Assignee: Fabrizio Giustina
>
> This could be useful for website where magnolia security is used also on the
> public instance:
> at the moment you can only use a static page or a freemarker template for the
> login page, but not an existing page managed by magnolia. Having a
> cms-managed login page is a common requirement.
> I already have some code for this that I will try to integrate soon, these
> are a couple of details about how it works:
> - the configuration for the login page doesn't replace the existing one, but
> it's an additional entry
> - the page is only displayed on public servers and not for the ./magnolia/*
> path (if the page in the website repository is not configured properly don't
> prevent administrators to login at all!)
> - the difficult part: when a secure uri is requested, the login page is
> displayed. After the login the user is redirected to the same page he was
> trying to see before authentication (with all the parameters submitted
> originally, and also if he had to navigate across more bages before login
> -for example after a self registration-
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://jira.magnolia-cms.com/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
----------------------------------------------------------------
For list details see
http://www.magnolia-cms.com/home/community/mailing-lists.html
To unsubscribe, E-mail to: <[email protected]>
----------------------------------------------------------------
