I would check and see if Spring Security has these features already:
http://static.springframework.org/spring-security/site/reference/html/springsecurity.html
If not, you may have to write them yourself.
Matt
On Fri, Jun 6, 2008 at 3:21 AM, Daniele De Francesco
<[EMAIL PROTECTED]> wrote:
>
> Hi
Hi all,
I'm developing a webapp that is AppFuse based and I need to use/embed Acegi
credential policy, such as password expiration time and notification via
mail of credentials expiration.
I've seen that AppFuse User object has the boolean attributes for
credentials expiring and account disabling
ified that any dissemination,
> distribution or copying of this information is strictly prohibited. If you
> have received this message in error, please notify the sender immediately
> and arrange for the return or destruction of these documents.
>
> -----Original Message-
> Fr
ibited. If you
have received this message in error, please notify the sender immediately
and arrange for the return or destruction of these documents.
-Original Message-
From: Matt Raible [mailto:[EMAIL PROTECTED]
Sent: Wednesday, January 02, 2008 12:45 PM
To: users@appfuse.dev.java.net
S
Are you sure the URL to your Action isn't protected? Are you certain
the "Access Denied" error is coming from this interceptor?
Matt
On 1/2/08, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
>
>
>
>
> I'm using Appfuse 1.9.4 with Struts framework.
>
>
>
> I'm trying to use 'methodSecurityIntercepto
I'm using Appfuse 1.9.4 with Struts framework.
I'm trying to use 'methodSecurityInterceptor' to secure access.
I have these constants in Constants.java
Public static final String SPIES_ADMIN = "SpiesAdmin";
Public static final String ADMIN_ROLE = "admin";
you can select 2.
when you use acegi in a appfuse1.9.4 project,you can see the article ,
the article had detailed the config of acegi.the links of the article
under(if you are interesting in the acegi you just try)
===>
http://www.pben.cn/main.bbscs?action=read&bid=22&postID=8a8a8a8f16c6af920116c
dev.java.net
Subject: Re: [appfuse-user] Acegi Security LDAP
just done something similar for my application.
It's basically a case of implementing the correct Acegi classes.
there are three core classes for implementing a custom SSO
authentication in acegi.
first you will need your own
n of these documents.
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Sent: Monday, December 10, 2007 10:22 AM
To: users@appfuse.dev.java.net
Subject: RE: [appfuse-user] Acegi Security
If I'm using Appfuse 1.9.4 which uses Spring 2.0, could I still follow
these tutori
mmediately
and arrange for the return or destruction of these documents.
-Original Message-
From: Nathan Anderson [mailto:[EMAIL PROTECTED]
Sent: Thursday, December 06, 2007 11:47 AM
To: users@appfuse.dev.java.net
Subject: Re: [appfuse-user] Acegi Security
Some useful information can be
, 2007 10:21 AM
To: users@appfuse.dev.java.net
Subject: Re: [appfuse-user] Acegi Security LDAP
just done something similar for my application.
It's basically a case of implementing the correct Acegi classes.
there are three core classes for implementing a custom SSO
authentication in
ilter? Please advise. Thank you.
From: Michael Horwitz [mailto:[EMAIL PROTECTED]
Sent: Thursday, December 06, 2007 11:53 AM
To: users@appfuse.dev.java.net
Subject: Re: [appfuse-user] Acegi Security LDAP
There is a guide here on getting LDAP authentication working with
AppFuse: http://www.appfuse.or
lease
advise. Thank you.
From: Michael Horwitz [mailto:[EMAIL PROTECTED]
Sent: Thursday, December 06, 2007 11:53 AM
To: users@appfuse.dev.java.net
Subject: Re: [appfuse-user] Acegi Security LDAP
There is a guide here on getting LDAP authentication working
There is a guide here on getting LDAP authentication working with AppFuse:
http://www.appfuse.org/display/APF/LDAP+Authentication
Mike
On 12/6/07, Ding, Qin <[EMAIL PROTECTED]> wrote:
>
>
>
> We built an appfuse application using 1.9.4. We need to change the
> login from db to ldap. Our compan
We built an appfuse application using 1.9.4. We need to change the
login from db to ldap. Our company uses novell's ichan to
authenticate/authorize the user. What's the good and easy way to make
that switch? Please advise.
Thank you.
QD
-
.java.net
Subject: Re: [appfuse-user] Acegi Security
Some useful information can be found here:
http://raibledesigns.com/wiki/Wiki.jsp?page=AppFuseSecurity
Obviously, you can ignore the part talking about how to integrate
Acegi
for AppFuse projects prior to version 1.8.
Other than that I'
users@appfuse.dev.java.net
Subject: Re: [appfuse-user] Acegi Security
Some useful information can be found here:
http://raibledesigns.com/wiki/Wiki.jsp?page=AppFuseSecurity
Obviously, you can ignore the part talking about how to integrate Acegi
for AppFuse projects prior to version 1.8.
Other than
d arrange for the return or destruction of these
> documents.
>
>
>
>
> From: Matt Raible [mailto: [EMAIL PROTECTED] ]
> Sent: Thursday, December 06, 2007 11:34 AM
> To: users@appfuse.dev.java.net
> Subject: Re: [appfuse-user] Acegi Security
>
>
destruction of these documents.
_
From: Matt Raible [mailto:[EMAIL PROTECTED]
Sent: Thursday, December 06, 2007 11:34 AM
To: users@appfuse.dev.java.net
Subject: Re: [appfuse-user] Acegi Security
If you're using 1.9.x, Acegi Security should already be integrated. It was
fir
If you're using 1.9.x, Acegi Security should already be integrated.
It was first integrated in 1.8.
http://raibledesigns.com/rd/entry/ann_appfuse_1_8_released
Matt
On Dec 6, 2007, at 7:50 AM, <[EMAIL PROTECTED]> wrote:
I want to add Acegi Security to my application. I am using appfuse
1.9.
I want to add Acegi Security to my application. I am using appfuse 1.9.x,
struts framework. I found 2 links to tutorials for Acegi.
http://raibledesigns.com/wiki/Wiki.jsp?page=AppFuseSecurityMethods -->
This one is for Struts framework only for Appfuse 1.4 and higher
http://raibledesigns.c
i am using 1.9.4, and navigation scheme is similar to appfuse with struts.
problem is when app_user has only one role "user" it can not access any link
which has following type of declaration:
/users.html*=admin,user
in this case, if user is admin or both roles are permitted, but if app_user
has
Two more questions: 1) which version of AppFuse are you using? and 2) do
you have a specific example of this not working? i.e. trying to access a
page, on first login, etc? In order to understand your problem it is
important we get a feel for how navigation works in your site.
Mike.
On 7/1/07,
here is it
PSI wrote:
>
> Hi!
>
> I have following setup for spring security for acegi, and when my app user
> having role only "user", it does not work, It shows access denied?
>
>
>
>
> PATTERN_TYPE_APACHE_ANT
> /clickstreams.jsp*=a
Your message did not come through clearly - its all printed on one line.
Please could you try re-sending as plain text?
Thanks
Mike.
On 6/29/07, PSI <[EMAIL PROTECTED]> wrote:
Hi! I have following setup for spring security for acegi, and when my app
user having role only "user", it does not w
Hi!
I have following setup for spring security for acegi, and when my app user
having role only "user", it does not work, It shows access denied?
PATTERN_TYPE_APACHE_ANT
/clickstreams.jsp*=admin
/flushCache.*=admin
This is also related to that FAQ that Matt linked:
http://appfuse.org/display/APF/FAQ#FAQ-whereisthesource
Nathan
nmall wrote:
Actually, I am trying to understand how ACEGI security as well as hibernate
are integrated into Appfuse. It looks like 2.0-M4 has all the steps in
http://raibledesig
Actually, I am trying to understand how ACEGI security as well as hibernate
are integrated into Appfuse. It looks like 2.0-M4 has all the steps in
http://raibledesigns.com/wiki/Wiki.jsp?page=AppFuseAuthentication
http://raibledesigns.com/wiki/Wiki.jsp?page=AppFuseAuthentication
packaged into
Actually they should be protected by the /**/*.html*=admin,user as long as
you access them with a .html ..depending onm which webframework you are
using you should create some mapping to your files(in struts
..struts-config...in jsf faces-config) when you build your war file the JSP
inside the pa
hi,
Thanks for your response.If the Url pattern is
http://localhost:8080/appfuse/forge,then how should i mention it in
security.xml to protect the files inside forge dir.
-Yesh
Michael Horwitz wrote:
>
> You will need to protect the URL used to a
You will need to protect the URL used to access the files. In
security.xmllook for the section:
PATTERN_TYPE_APACHE_ANT
/clickstreams.jsp*=admin
/flushCache.*=admin
/passwordHint.html*=ROLE_ANONYMOUS,
Hi,
I have added a folder which contains some jsp files in appfuse
application. How to give security to those files.
--
View this message in context:
http://www.nabble.com/ACEGI-SECURITY-tf2917819s2369.html#a8154265
Sent from the AppFuse - User mailing list archive at Nabble.com.
---
32 matches
Mail list logo
