DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://issues.apache.org/bugzilla/show_bug.cgi?id=34625>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=34625 ------- Additional Comments From [EMAIL PROTECTED] 2005-04-26 18:00 ------- If we made this change, then to be consistent we would need to do this everywhere Struts calls the Request's isUserInRole() method. From memory the logic tags and tiles are the other places that roles are checked but I'm wondering if there are any others. Having said that I am -1 to having Struts "swallow" all exceptions to cater for a bug in Orion. If a "genuine" exception occurs in that method then its going to make it more difficult for someone to debug whats going on if all they keep getting is the "Not Authorised" message - rather than seeing the exception. Seems like it would be best fixed in Orion. As a workaround, you can easily plug in your own custom RequestProcessor and override the processRoles() method to implement this behaviour for yourself. In Struts 1.3 then this gets easier since all you need to do is create a concrete implementation of o.a.s.c.c.AbstractAuthorizeAction and configure Struts to use it through the chain-config.xml. I wouldn't mind us having an alternative "OrionAuthorizeAction" command implementation for this. -- Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
