It appears that right now when a new user registers in Rave, they do not get any granted authority roles (including the all-important ROLE_USER). So a new user creates their account, then tries to login, and gets a 403 forbidden. Is this the behavior we want, where all new users must have the ROLE_USER applied manually by an admin, or do we want to automatically give ROLE_USER to new user accounts so they can login?
My vote would be for #2 (give them ROLE_USER automatically) but what do others think? Thanks, Tony --- Anthony Carlucci | SW App Dev Eng, Sr. | R501 / KW App Development & Maint e: [email protected]<mailto:[email protected]> | v: 781.271.2432 | f: 781.271.3299 The MITRE Corporation | 202 Burlington Rd | Bedford, MA 01730-1420
