Cannot view content after someone logs in
-----------------------------------------
Key: JSPWIKI-279
URL: https://issues.apache.org/jira/browse/JSPWIKI-279
Project: JSPWiki
Issue Type: Bug
Components: Authentication&Authorization
Affects Versions: 2.6.2
Environment: Jboss 4.2
Reporter: Neville Attard
I'm using JSP wiki as a knowledge base where only admins can enter/modify data,
at least for now. Anonymous users should be able to just view the content.
I have enabled jboss' jaas for JSPwiki
and I set the jspwiki security policy as follows:
grant principal com.ecyrd.jspwiki.auth.authorize.Role "All" {
permission com.ecyrd.jspwiki.auth.permissions.PagePermission "*:*", "view";
permission com.ecyrd.jspwiki.auth.permissions.WikiPermission "*",
"editPreferences";
permission com.ecyrd.jspwiki.auth.permissions.WikiPermission "*",
"editProfile";
permission com.ecyrd.jspwiki.auth.permissions.WikiPermission "*", "login";
};
grant principal com.ecyrd.jspwiki.auth.GroupPrincipal "Admin" {
permission com.ecyrd.jspwiki.auth.permissions.AllPermission "*";
};
grant principal com.ecyrd.jspwiki.auth.authorize.Role "Admin" {
permission com.ecyrd.jspwiki.auth.permissions.AllPermission "*";
};
Everything is fine until I log in as Admin...
The Admin can create, view, modify pages normally...
By anonymous users that will try to view the knowledge base will be redirected
to the https login page.
This issue remains after i log out the Admin.
It only disappears after restarting the jboss server.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
