Re: New Tynamo releases: Tapestry-security 1.0.0 & tapestry-resteasy 1.0.0 released for Tapestry 5.9.0

Hi Kalle, Thank you for creating and maintaing tapestry-security and adding support for ee9. As a first time tapestry-security user I'm struggeling with getting it to work. Perhaps you can help here? Using 1.0.0, I'm trying to setup a Tapestry-style configuration, i.e. without a

Re: New Tynamo releases: Tapestry-security 1.0.0 & tapestry-resteasy 1.0.0 released for Tapestry 5.9.0

Hello, Kalle! Nice to see you around again! tapestry-security and tapestry-resteasy are both awesome and thank you so much for upgrading them to latest Tapestry! Cheers! On Thu, Jul 3, 2025 at 1:21 PM Kalle Korhonen wrote: > Hi all, > > been awhile since I last posted. I'v

Re: New Tynamo releases: Tapestry-security 1.0.0 & tapestry-resteasy 1.0.0 released for Tapestry 5.9.0

Hi Kalle, Thank you for maintaining these two projects. You've clearly invested significant time and effort in bringing both to fruition, and I commend you for that. Nice, clear documentation too! I wish I'd discovered tapestry-security when starting work on one particular web a

New Tynamo releases: Tapestry-security 1.0.0 & tapestry-resteasy 1.0.0 released for Tapestry 5.9.0

Hi all, been awhile since I last posted. I've incorporated incoming pull requests from community and updated two Tynamo modules, tapestry-security and tapestry-resteasy for Tapestry 5.9.0 and ee9 (jakarta servlet compatibility). See https://www.tynamo.org/tapestry-security+guide/ and

Re: Tapestry Security

Hi Andreas, tapestry-security (http://www.tynamo.org/tapestry-security+guide/) is a Third Party project, not an Apache Tapestry module. The source code is available on GitHub (https://github.com/tynamo/tapestry-security). Perhaps you can speed things up by cloning the project, making the

Tapestry Security

Hi, are the any Plans to Update Tapestry Security for the new Tapestry Version. With the latest i got serveral errors, like: Unable to instantiate class org.apache.tapestry5.http.modules.TapestryHttpModule as a module: Exception constructing service 'ServiceOverride': Error invoki

[SECURITY VULNERABILITY DISCLOSURE] CVE-2021-27850: Apache Tapestry: Bypass of the fix for CVE-2019-0195

Description: A critical unauthenticated remote code execution vulnerability was found all recent versions of Apache Tapestry. The affected versions include 5.4.5, 5.5.0, 5.6.2 and 5.7.0. The vulnerability I have found is a bypass of the fix for CVE-2019-0195. Recap: Before the fix of CVE-2019

Re: Re: Spring Security Integration

We have a couple of tapestry apps that are wired up using boot and spring security. A simple setup to get the Tapestry filter in, is something like this (no web.xml, the listener and production mode symbol can be left out): @SpringBootApplication public class AppWebApplicationInitializer extends

Re: Re: Spring Security Integration

I managed to get Tapestry integrated with Springboot using this example https://github.com/code8/tapestry-boot. Followed by security integration using Apache Shiro. http://www.tynamo.org/tapestry-security+guide/ However the drawback that I'm having atm is I lost the ability to hot-replace my

Re: Re: Spring Security Integration

> This can be done quite easily in Spring Boot + Security. > I did not find this kind of integration in Shiro. > I'm definitely not an expert in that field so I'm afraid I cannot help you further here. Have you checked the Tapestry-Spring integration? https://tapest

Aw: Re: Spring Security Integration

Hi! Yes, I looked into the quickstart archetype and Apache Shiro. One requirement of the project is to delegate Authentication/Authorization to an WSO2 Identity Server with the help of OpenId Connect. This can be done quite easily in Spring Boot + Security. I did not find this kind of

Re: Spring Security Integration

On Thu, Sep 10, 2020 at 5:50 PM Reinhold Gruber wrote: > Hi! > Hi! I have a hard time trying to integrate Tapesty within a Spring Boot > Application secured by Spring Security. > Did anyone have success in this area and wants to share his experience and > knowhow. I thought t

Spring Security Integration

Hi! I have a hard time trying to integrate Tapesty within a Spring Boot Application secured by Spring Security. Did anyone have success in this area and wants to share his experience and knowhow. I thought that it would be enough to simply append the TapestryFilter after the Spring FilterChain

Re: Add HTTP security Headers in the response

ion { > > response.addHeader("X-Frame-Options", "my options"); > > return handler.service(request, response); > > } > > } > > > > Then just contribute it in a module: > > > > public static void > >

Re: Add HTTP security Headers in the response

apps. The configuration is an "OrderedConfiguration", so you can influence the order of the filters: conf.addInstance("my-security-headers", MySecurityHeadersRequestFilter.class, "before:StaticFiles"); The name of the contribution is defined here org.apache.tapestry5.modules.T

Re: Add HTTP security Headers in the response

> return handler.service(request, response); > } > } > > Then just contribute it in a module: > > public static void > contributeRequestHandler(OrderedConfiguration conf) { > conf.addInstance("my-security-headers", > MySecurityHeadersRequestFi

Re: Add HTTP security Headers in the response

dule: public static void contributeRequestHandler(OrderedConfiguration conf) { conf.addInstance("my-security-headers", MySecurityHeadersRequestFilter.class); } On Wed, Oct 3, 2018 at 5:59 PM Ajay Arora wrote: > Hello All, > > We're looking for ways to add different htt

Add HTTP security Headers in the response

Hello All, We're looking for ways to add different http security headers like X-Frame-Options, X-XSS-Protection and others into the http response. We're using Tapestry 5.4.3. One way I found was to add a additional filter in web.xml before the Tapestry Filter takes over but then

Re: tapestry-security 0.7.1 and tapestry-resteasy 0.5.0 released!

>> This is wonderful! Thank you very much! >> >> On Mon, Jul 2, 2018 at 3:01 PM Kalle Korhonen >> wrote: >> >>> It's that time of the year again. Actually, the community has been asking >>> these to be released for a while. Thanks to @homburgs, yo

Re: tapestry-security 0.7.1 and tapestry-resteasy 0.5.0 released!

has been asking > > these to be released for a while. Thanks to @homburgs, you can now > > contribute chains with RegExPatternMatcher to tapestry-security ( > > https://github.com/tynamo/tapestry-security/pull/50). Also, 0.7.1 is now > > using the latest version of Tapestry a

Re: tapestry-security 0.7.1 and tapestry-resteasy 0.5.0 released!

er to tapestry-security ( > https://github.com/tynamo/tapestry-security/pull/50). Also, 0.7.1 is now > using the latest version of Tapestry and I cleaned up a few annoying > default configuration errors that used to pop up in the logs( > https://github.com/tynamo/tapestry-securit

tapestry-security 0.7.1 and tapestry-resteasy 0.5.0 released!

It's that time of the year again. Actually, the community has been asking these to be released for a while. Thanks to @homburgs, you can now contribute chains with RegExPatternMatcher to tapestry-security ( https://github.com/tynamo/tapestry-security/pull/50). Also, 0.7.1 is now using the l

Re: tapestry-security 0.7.0 released!

an extended hiatus, I figured it’s time to do some releases. First >> up >> > is the old workhorse, tapestry-security. The 0.7.0 release represents a >> > true community effort, my job was mainly to merge pull requests from >> > multiple authors. Thank you @jochenberge

Re: tapestry-security 0.7.0 released!

very much! > > On Thu, Sep 14, 2017 at 7:58 PM, Kalle Korhonen < > kalle.o.korho...@gmail.com> > wrote: > > > After an extended hiatus, I figured it’s time to do some releases. First > up > > is the old workhorse, tapestry-security. The 0.7.0 release represent

Re: tapestry-security 0.7.0 released!

Awesome, Kalle! Thank you very much! On Thu, Sep 14, 2017 at 7:58 PM, Kalle Korhonen wrote: > After an extended hiatus, I figured it’s time to do some releases. First up > is the old workhorse, tapestry-security. The 0.7.0 release represents a > true community effort, my job was mainly

Re: tapestry-security 0.7.0 released!

Excellent news, thanks Kalle! On Sep 14, 2017 6:58 PM, "Kalle Korhonen" wrote: After an extended hiatus, I figured it’s time to do some releases. First up is the old workhorse, tapestry-security. The 0.7.0 release represents a true community effort, my job was mainly to merge pull req

tapestry-security 0.7.0 released!

After an extended hiatus, I figured it’s time to do some releases. First up is the old workhorse, tapestry-security. The 0.7.0 release represents a true community effort, my job was mainly to merge pull requests from multiple authors. Thank you @jochenberger, @fkretzer, @pedrocborges2, @ascandroli

Re: Tapestry Ajax Security

the client-side API release in Tapestry 5.4.2 probably there > will > > be more people that will depend on the tapestry ajax component. So I was > > wondering what about the security. Since it will be easily manipulated in > > the client side. > > > > In

Re: Tapestry Ajax Security

component. So I was > wondering what about the security. Since it will be easily manipulated in > the client side. > > In the traditional tapestry page we can rely on Something like page > protection filter or apache shiro. In the case of ajax request, from the > top of my min

Tapestry Ajax Security

Hi, with the client-side API release in Tapestry 5.4.2 probably there will be more people that will depend on the tapestry ajax component. So I was wondering what about the security. Since it will be easily manipulated in the client side. In the traditional tapestry page we can rely on Something

Re: pac4j with tapestry-security

Take a look at the excellent tynamo-federatedaccounts module at http://www.tynamo.org/tynamo-federatedaccounts+guide/ Cheers! On Fri, Apr 28, 2017 at 1:11 AM, Tapestry wrote: > Hey all! > > I am trying to use pac4j (https://github.com/bujiio/buji-pac4j) with > tapestry-security sin

pac4j with tapestry-security

Hey all! I am trying to use pac4j (https://github.com/bujiio/buji-pac4j) with tapestry-security since my client requires SAML2. But seeing that I can't use shiro.ini, I can't come up with a way to implement. Has anybody use this library before? Thanks! Miguel

Re: Tapestry-security/shiro check for 'any' permission

19, 2017, Robin Garner wrote: > I've just about finished adding my first feature that uses object > permissions to a tapestry app (tapestry-security 0.5.1, tapestry 5.3.8). > Users are given permissions to the objects they are allowed to maintain, > when they go to the new page, only

Tapestry-security/shiro check for 'any' permission

I've just about finished adding my first feature that uses object permissions to a tapestry app (tapestry-security 0.5.1, tapestry 5.3.8). Users are given permissions to the objects they are allowed to maintain, when they go to the new page, only the objects they have permission to mai

Re: Tapestry-security CacheManager

Typically, you'd set the desired cachemanager in the realm itself, e.g.: public class UserRealm extends AuthorizingRealm { public UserRealm(...) { super(new MemoryConstrainedCacheManager()); Kalle On Wed, Dec 21, 2016 at 12:47 AM, Charlouze wrote: > Hello tapestry users, > > I wan

Tapestry-security CacheManager

Hello tapestry users, I wanted to get rid of the log message that says "*No cache or cacheManager properties have been set. Authorization cache cannot be obtained.*". I read that shiro offers an implementation of their CacheManager using EhCache so I tried to set it up. In order to set the Cache

Re: Tynamo Security Login Page

Hi All - Just as a follow up, I was able to resolve everything based in large part on the feedback from Kalle. Had a successful demo for the sprint end. 1) Did a copy-paste of the login tml/java from tapestry-security and derived customizations from there. Used symbols to tell tapestry-security

Re: Tynamo Security Login Page

ecify the library since it's not your own component - loginPage > > is just a local attribute name. Use or > > just replace the whole block with <:tsecurity.loginlink>. > > > > Kalle > > > > On Wed, Nov 9, 2016 at 9:03 AM, Adam X wrote: > > > &

Re: Tynamo Security Login Page

The behaviors that you are describing can be easily configured using Symbols. Take a look at the SecuritySymbols class: https://github.com/tynamo/tapestry-security/blob/master/src/main/java/org/tynamo/security/SecuritySymbols.java The Symbols that you are looking for are: LOGIN_URL and

Re: Tynamo Security Login Page

e name. Use or > just replace the whole block with <:tsecurity.loginlink>. > > Kalle > > On Wed, Nov 9, 2016 at 9:03 AM, Adam X wrote: > >> I have tapestry-security integrated and working in my project. Page >> classes annotated with shiro such as @RequiresAuthentication get >

Re: Tynamo Security Login Page

Need to specify the library since it's not your own component - loginPage is just a local attribute name. Use or just replace the whole block with <:tsecurity.loginlink>. Kalle On Wed, Nov 9, 2016 at 9:03 AM, Adam X wrote: > I have tapestry-security integrated and working in my

Tynamo Security Login Page

I have tapestry-security integrated and working in my project. Page classes annotated with shiro such as @RequiresAuthentication get intercepted with the login page. What is the best way to create a link on my page that redirects to tap security login page? In my Laout.java I tried this

Re: Tynamo Security w/ custom Realm

instance set. > Checking for a cacheManager... > [DEBUG] org.apache.shiro.realm.AuthorizingRealm > (getAuthorizationCacheLazy:242) - CacheManager > [MemoryConstrainedCacheManager with 0 cache(s)): []] has been > configured. Building authorization cache named > [awsiamaccounts.

Re: Tynamo Security w/ custom Realm

nCacheLazy:242) - CacheManager [MemoryConstrainedCacheManager with 0 cache(s)): []] has been configured. Building authorization cache named [awsiamaccounts.authorizationCache] So I must have a misconfiguration somewhere but am stuck as I can't figure out where. I just thought that ta

Re: Tynamo Security w/ custom Realm

h. [WARN] org.apache.tapestry5.modules.AssetsModule.AssetSource (invoke:245) - Classpath asset '/org/tynamo/security/img/login-bg.png' should be moved to folder '/META-INF/assets/security/org/tynamo/security/img/'. [DEBUG] com.foo.bar.core.engine.components.dao.UserManag

Re: Tynamo Security w/ custom Realm

m use case working first and work from there. Kalle On Tue, Nov 8, 2016 at 10:16 AM, Adam X wrote: > Howdy ! > > I followed tynamo setup guide > (http://www.tynamo.org/tapestry-security+guide/) combined with > federated accounts example > (https://github.com/tynamo/tynamo-federa

Tynamo Security w/ custom Realm

Howdy ! I followed tynamo setup guide (http://www.tynamo.org/tapestry-security+guide/) combined with federated accounts example (https://github.com/tynamo/tynamo-federatedaccounts). I believe I have the setup hooked up correctly as my annotated page with @RequiresRoles("administrator&quo

Re: Dynamic Security Role Value - Tynamo Security

e 29, 2016, Matthew Bush < matthew.b...@jetinteractive.com.au> wrote: > I want to dynamically set required roles at runtime dynamically rather > than have them statically coded. Is this possible? > > Taken from the tynamo-security page ( > http://www.tynamo.org/ta

Re: Dynamic Security Role Value - Tynamo Security

> Taken from the tynamo-security page > (http://www.tynamo.org/tapestry-security+guide/ > <http://www.tynamo.org/tapestry-security+guide/>) > > > delete user > > What I would like to be able to do is set the required role or role list > based on a bou

Dynamic Security Role Value - Tynamo Security

I want to dynamically set required roles at runtime dynamically rather than have them statically coded. Is this possible? Taken from the tynamo-security page (http://www.tynamo.org/tapestry-security+guide/ <http://www.tynamo.org/tapestry-security+guide/>) delete user What I would l

tapestry-security 0.6.4 release addresses a serious vulnerability

While the Apache Shiro team (me included) are still mulling over how to best fix a serious security vulnerability with Shiro's default rememberMe cookies and object deserialization [SHIRO-550]( https://issues.apache.org/jira/browse/SHIRO-550), I went ahead and implemented a fix fo

Re: tapestry-security oauth authentification

Hi Charles, hope you don't mind that I moved this discussion to the tapestry users list as it may be useful for others as well. Yes, I'm right there with you. The trick to this is to override the SubjectFactory. Shiro creates a subject for all requests, authenticated or not. The principle is roughl

Re: Tapestry-security 0.6.3 and tapestry-model 0.6.0 for T5.4 released!

PM, "Kalle Korhonen" > wrote: > > > Hey all, > > > > at this time we have two T5.4 compatible release announcements to make. > > First tapestry-security 0.6.3: > > > > While working on securing an Ember frontend with Tapestry backend, I >

Re: Tapestry-security 0.6.3 and tapestry-model 0.6.0 for T5.4 released!

That's great news, thanks a lot ! As for tapestry-resteasy and tapestry-security, I had to reorder HttpServletRequestHandler and add some config to the security filter chain to secure my api. It was quite easy to do so I didn't think to tell you. Le mar. 15 déc. 2015 à 12:33, Bob Harne

Re: Tapestry-security 0.6.3 and tapestry-model 0.6.0 for T5.4 released!

cements to make. > First tapestry-security 0.6.3: > > While working on securing an Ember frontend with Tapestry backend, I > noticed that tynamo-resteasy didn't want to play well with security. I'm > fairly surprised this issue surfaced only now because tapestry-security is &g

Tapestry-security 0.6.3 and tapestry-model 0.6.0 for T5.4 released!

Hey all, at this time we have two T5.4 compatible release announcements to make. First tapestry-security 0.6.3: While working on securing an Ember frontend with Tapestry backend, I noticed that tynamo-resteasy didn't want to play well with security. I'm fairly surprised this issue sur

Re: HTTPS + tapestry-security

t add the '/' at the end of the host, > i.e. domain.tldlogin/unauthenticated. And the login form does not use > action="/login.login", it uses http:/... > > tapestry 5.4-rc-1 > tapestry-security 0.6.2 > > Bug? > > Andy > -- > ae | Andreas Ernst

HTTPS + tapestry-security

m does not use action="/login.login", it uses http:/... tapestry 5.4-rc-1 tapestry-security 0.6.2 Bug? Andy -- ae | Andreas Ernst | IT Spektrum Postfach 5, 65612 Beselich Schupbacher Str. 32, 65614 Beselich, Germany Tel: +49-6484-91002 Fax: +49-6484-91003 a...@ae-online.de | www.ae-o

Re: Tapestry Spring Security

On Tue, 20 Oct 2015 15:14:57 -0200, Krishna Kanth Abburi Venkata wrote: Hi all, Hi! I am having a weird problem with Tapestry-Spring-Security. I am using tapestry-spring-security 5.0, When i am trying to Inject AuthenticationManager

Tapestry Spring Security

Hi all, I am having a weird problem with Tapestry-Spring-Security. I am using tapestry-spring-security 5.0, When i am trying to Inject AuthenticationManager(org.springframework.security.authentication.AuthenticationManager) in a tapestry page it works fine , when i am trying to Autowire the same

Re: PermissionEvaluator in tapestry-spring-security

On Mon, 19 Oct 2015 10:22:03 -0200, Nathan Quirynen wrote: As we are already using it mainly for authentication (users and roles, filters, ..), so we would prefer keep using it for new authorization use cases. What I need is possible with Spring Security, I'm just not sure how to set i

Re: PermissionEvaluator in tapestry-spring-security

As we are already using it mainly for authentication (users and roles, filters, ..), so we would prefer keep using it for new authorization use cases. What I need is possible with Spring Security, I'm just not sure how to set it all up. I'm not really familiar with Apache Sh

Re: PermissionEvaluator in tapestry-spring-security

On Fri, 16 Oct 2015 13:25:25 -0300, Nathan Quirynen wrote: Hi, Hi! Is it possible with the tapestry-spring-security module to create your own PermissionEvaluator like in the following link? http://www.borislam.com/2012/08/writing-your-spring-security-expression.html My question is

PermissionEvaluator in tapestry-spring-security

Hi, Is it possible with the tapestry-spring-security module to create your own PermissionEvaluator like in the following link? http://www.borislam.com/2012/08/writing-your-spring-security-expression.html My question is about step 1 on that page; the configuration. How can I do this with the

Re: T5.3.7 + Tynamo Security - User ASO creation after authc/authz

m/tynamo/tynamo-federatedaccounts/blob/master/tynamo-federatedaccounts-rollingtokens/src/main/java/org/tynamo/security/rollingtokens/RollingTokensModule.java and the accompanying RollingTokenAutoLoginAdvice. That code is more complicated than you need - you don't have to create an advice but you

T5.3.7 + Tynamo Security - User ASO creation after authc/authz

Hi, I'm getting hung up on something that's probably really simple to fix. I have a Tomcat+LDAP configuration that is doing Authc and Authz for me--All I have to do is look in the request header to see the user principal and log the dude/dudette in. So I'm using the built in factory.authc filter o

Re: Tynamo Tapestry-Security - Multiple Realms - How to Change Authentication Strategy

Thanks Kalle -- you've made it easy for me!!! I added this to my AppModule and it works perfectly: @Startup public static void specifyAuthenticationStrategy(@InjectService("ModularRealmAuthenticator") ModularRealmAuthenticator mra) { mra.setAuthenticationStrategy(new F

Re: Tynamo Tapestry-Security - Multiple Realms - How to Change Authentication Strategy

On Sun, Dec 21, 2014 at 8:55 AM, Charles Karow wrote: > I'm using Tynamo Tapestry-Security 0.6.0 with Tapestry 5.4, and finding it > a very useful tool!! > I am implementing two realms for two different classes of users that are > stored in different tables in the databa

Tynamo Tapestry-Security - Multiple Realms - How to Change Authentication Strategy

I'm using Tynamo Tapestry-Security 0.6.0 with Tapestry 5.4, and finding it a very useful tool!! I am implementing two realms for two different classes of users that are stored in different tables in the database; both will use username/password authentication, and thus the same authentic

RE: possible security bug or tapestry bug beta-22

mages without clogging up the form content size ? thanks for your help Best regards and thanks... KEN From: nhhockeypla...@hotmail.com To: users@tapestry.apache.org Subject: RE: possible security bug or tapestry bug beta-22 Date: Tue, 2 Dec 2014 02:41:07 -0500 Is this necessary ? Is there a w

RE: possible security bug or tapestry bug beta-22

Is this necessary ? Is there a way to resolve ? Cant say I am impressed with the performance when this thing is fully loaded. Trying to find a way for this to work. HTTP ERROR 500 Problem accessing /psi/home.galleryform/player. Reason: Form too large1051684>20Caused by:java.lang.Illegal

RE: possible security bug or tapestry bug beta-22

Upon performing a clean rebuild and deploy... the app works up to a couple select operations and then hangs with -- The connection was reset The connection to the server was reset while the page was loading. The site could be temporarily unavailable or too busy. Try

possible security bug or tapestry bug beta-22

widespread and producible on 1.2.3 Anyway, I am not sure if this is a mis-use bug or shiro-bug or a tap-5.4 bug I attached the stack trace and its difficult to see as to why... maybe its a security configuration? My site is wide open except for admin privs on writable crud. Is there anything I can

Re: [tapestry-security] PageService return page

OK cool, thx for quick response!! On 12/11/2014 3:03 pm, "Kalle Korhonen" wrote: > On Tue, Nov 11, 2014 at 7:48 PM, Chris Mylonas wrote: > > > Hi Tapestry Users, > > I'm porting some 5.3 (tapestry-security 0.5.1) to 5.4 (tapestry-security > > 0.6.2). >

Re: [tapestry-security] PageService return page

On Tue, Nov 11, 2014 at 7:48 PM, Chris Mylonas wrote: > Hi Tapestry Users, > I'm porting some 5.3 (tapestry-security 0.5.1) to 5.4 (tapestry-security > 0.6.2). > In my Signin page, there's a declaration to > import org.tynamo.security.services.PageService ; > which

[tapestry-security] PageService return page

Hi Tapestry Users, I'm porting some 5.3 (tapestry-security 0.5.1) to 5.4 (tapestry-security 0.6.2). In my Signin page, there's a declaration to import org.tynamo.security.services.PageService ; which is no longer found/available in 0.6.x What happened to it? (or where

Re: Session Cookie Remains after Tapestry Security Logout

t causes the > cookie > > > to remain? > > > > > > First of all, requesting an invalid session should not have been logged > > as > > an error - it's a completely normal for a web application - a WARN or > > simply DEBUG would have suited much b

Re: Session Cookie Remains after Tapestry Security Logout

> First of all, requesting an invalid session should not have been logged > as > an error - it's a completely normal for a web application - a WARN or > simply DEBUG would have suited much better (you could open an issue with > Wadi on that). Anyway, tapestry-security doesn't exp

Re: Session Cookie Remains after Tapestry Security Logout

y normal for a web application - a WARN or simply DEBUG would have suited much better (you could open an issue with Wadi on that). Anyway, tapestry-security doesn't explicitly remove JSESSIONID cookie on logout. It just invalidates the session and removes the rememberMe cookie. I didn't see th

Session Cookie Remains after Tapestry Security Logout

Hi Everyone! I am developing an application using Tapestry 5.4-beta-22 & Tapestry-Security 0.6.2. The Tapestry framework and the Tapestry-Security module have made my life a lot easier, and for that I am really grateful. I am writing to seek your generous input on an issue regarding the ses

Re: Tapestry-security 0.6.2 released!

Okay great, Thanks Kalle. On Mon, Oct 27, 2014 at 12:02 PM, Kalle Korhonen wrote: > On Mon, Oct 27, 2014 at 8:51 AM, George Christman > > wrote: > > > Sorry Kalle, it's still not entirely clear to me what I should be doing. > > Your saying LoginContextService is internal? Is there another way t

Re: Tapestry-security 0.6.2 released!

On Mon, Oct 27, 2014 at 8:51 AM, George Christman wrote: > Sorry Kalle, it's still not entirely clear to me what I should be doing. > Your saying LoginContextService is internal? Is there another way to access > getXxxURL then? Also, how do we handle redirectedToSavedRequest now? At > You handle

Re: Tapestry-security 0.6.2 released!

Sorry Kalle, it's still not entirely clear to me what I should be doing. Your saying LoginContextService is internal? Is there another way to access getXxxURL then? Also, how do we handle redirectedToSavedRequest now? At some point when you get everything ironed out it might be helpful to present t

Re: Tapestry-security 0.6.2 released!

On Mon, Oct 27, 2014 at 7:30 AM, George Christman wrote: > That's great Kalle. Thanks > > Question, I see you deprecated some methods, but I'm not seeing any > documentation on the new usage. I'm using the following code and I'm seeing > getSuccessPage() and getLoginPage() has been deprecated. I

Re: Tapestry-security 0.6.2 released!

That's great Kalle. Thanks Question, I see you deprecated some methods, but I'm not seeing any documentation on the new usage. I'm using the following code and I'm seeing getSuccessPage() and getLoginPage() has been deprecated. I think I read something about about getLoginPage() being replaced by

Re: Tapestry-security 0.6.2 released!

Toot toot!

Tapestry-security 0.6.2 released!

in 0.6.1. Fixed and added another enhancement well. - ContextPath is inconsistently saved as part of the savedRequest #15 <https://github.com/tynamo/tapestry-security/issues/15> - Access to /modules/** and /modules.gz/** should be allowed by default #14 <https://github.c

Re: Tapestry-security 0.6.1 released!

; > kalle.o.korho...@gmail.com > > > > > wrote: > > > > > Choo choo! The security train is moving again, all aboard! This is the > > > 0.6.1 bullet train on the latest T5.4-beta-22 rail. Our rail engineers > > have > > > been hard at work and deliver

Re: Tapestry-security 0.6.1 released!

That's great, thanks Kalle On Thu, Oct 9, 2014 at 11:20 AM, Dmitry Gusev wrote: > Congrats! :) > > On Thu, Oct 9, 2014 at 7:18 PM, Kalle Korhonen > > wrote: > > > Choo choo! The security train is moving again, all aboard! This is the > > 0.6.1 bullet train o

Re: Tapestry-security 0.6.1 released!

Congrats! :) On Thu, Oct 9, 2014 at 7:18 PM, Kalle Korhonen wrote: > Choo choo! The security train is moving again, all aboard! This is the > 0.6.1 bullet train on the latest T5.4-beta-22 rail. Our rail engineers have > been hard at work and delivered the following enh

Tapestry-security 0.6.1 released!

Choo choo! The security train is moving again, all aboard! This is the 0.6.1 bullet train on the latest T5.4-beta-22 rail. Our rail engineers have been hard at work and delivered the following enhancements: - Session timeout, Login, POST form resubmission fails #7 <https://github.com/tyn

Re: Tynamo tapestry-security 0.6.0 in a v2.5 servlet container

Oct 2, 2014 at 4:11 PM, Jon Williams wrote: > Hi Kalle, > > I have tapestry-security 0.6.0 working successfully in GAE with > tapestry5.4 beta 22. > My problem was due to an oversight in my code which was quasi-impossible > to isolate from just looking at GAE logs. > Finally

Re: Tynamo tapestry-security 0.6.0 in a v2.5 servlet container

Hi Kalle, I have tapestry-security 0.6.0 working successfully in GAE with tapestry5.4 beta 22. My problem was due to an oversight in my code which was quasi-impossible to isolate from just looking at GAE logs. Finally broke down and got the app running locally in a debugger today and fixed my

Re: Tynamo tapestry-security 0.6.0 in a v2.5 servlet container

lure, I'll be happy to assist getting tapestry-security running on GAE. Kalle On Sun, Sep 14, 2014 at 3:28 PM, Jon Williams wrote: > Hi Kalle, (& y'all) > > I see your tapestry-security 0.6.0 has a dependency on the v3.0 servlet > spec. > I know 0.5.1 had it too, bec

Tynamo tapestry-security 0.6.0 in a v2.5 servlet container

Hi Kalle, (& y'all) I see your tapestry-security 0.6.0 has a dependency on the v3.0 servlet spec. I know 0.5.1 had it too, because I have an app running with it in a v3 servlet container that works fine and dandy. I am trying to work tapestry-security 0.6.0 into another app that's

Re: tapestry-security looking for sample code

Chris! :D Here's it: https://github.com/thiagohp/eloquentia. I was learning Tapestry Security and Apache Shiro on the fly, one piece at a time, implementing authentication then authorization. The key for learning Tapestry Security is to remember that's an integration of Apache Shiro, a

Re: tapestry-security looking for sample code

rge.net/hibernate-configuration-3.0.dtd"; > > Little things but they took me a while to find. :) > > Tim > > > > On 5 Aug 2014, at 12:51, Chris Mylonas wrote: > > Blog entry from previous reply seeing as it is out in the ether now :) > Sorry for spamming list >

Re: tapestry-security looking for sample code

ther now :) > Sorry for spamming list > > http://www.mrvoip.com.au/blog/tapestry-security-howto-notes > > Chris > > > On Tue, Aug 5, 2014 at 12:27 PM, Chris Mylonas wrote: > >> And here's some notes from my wiki for a tapestry-security file based auth >&

Re: tapestry-security looking for sample code

Thanks Chris This is really helpful. Getting an error that I can't parse hibernate.cfg.xml at the moment but I should be able to work it out. Tim On 5 Aug 2014, at 12:27, Chris Mylonas wrote: > And here's some notes from my wiki for a tapestry-security file based auth > a

Re: tapestry-security looking for sample code

mples. The concepts are largely the same whether you use JPA or Hibernate. Kalle On Mon, Aug 4, 2014 at 6:42 PM, D Tim Cummings wrote: > I am having a look at the tapestry-security guide at > http://tynamo.org/tapestry-security+guide and several of the links are > broken > > Hib

  1   2   3   4   5   6   7   8   9   10   >