DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://nagoya.apache.org/bugzilla/show_bug.cgi?id=24939>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.
http://nagoya.apache.org/bugzilla/show_bug.cgi?id=24939 administrative functions not secured ------- Additional Comments From [EMAIL PROTECTED] 2003-12-20 04:48 ------- How does this sound? We create new abstract actions such as SecureGenericMVCAction and others as needed (SecureVelocityPortletAction,...). These actions would override the doPerform/fireEvents methods by first performing the admin check algorithm mentioned by David. If the security check passes, then execution proceeds as normal. Otherwise, a message is logged. >From this point on, I'm unsure what course to take. Right now, I'm thinking that maybe we could set the template to some generic error page, or a specific template. Ideas and suggestions are welcome. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
