Shawn McKinney created FC-80:
--------------------------------
Summary: Fix logout for unauthorized users
Key: FC-80
URL: https://issues.apache.org/jira/browse/FC-80
Project: FORTRESS
Issue Type: Bug
Affects Versions: 1.0.0-RC39
Reporter: Shawn McKinney
Fix For: 1.0.0-RC40
fix use case where unauthorized user can't logout because they aren't
authorized to hit the logout page. Add this constraint to all that page to be
loaded:
<security-constraint>
<web-resource-collection>
<web-resource-name>app</web-resource-name>
<url-pattern>/wicket/bookmarkable/org.apache.directory.fortress.web.LogoutPage</url-pattern>
</web-resource-collection>
<!-- OMIT auth-constraint -->
</security-constraint>
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
