Re: JAAS and roles attribute of logic:present

Daniel Massie Tue, 30 Dec 2003 18:01:26 -0800

If I firstly go to a secured area, I am redirected to the login page. I log in, get sent to my original request (secure area). If I then go immediately to an unsecure area, there is no principal or subject (both null).

If I go to the unsecured area without an existing session, there is also no principal or subject (both null) as expected.

Daniel

Karr, David wrote:

I'm not sure what problem you're having.  Are you saying that after you
specify your login when accessing a secured area, you then immediately
(before session timeout) access an unsecured area that checks
"role=admin" and thinks you don't have that role (I would be surprised
if it did that)?  Or is your first access (without an existing session)
to the unsecured area?  If that's the case, then there definitely won't
be an existing principal.  Did you think there would be?

---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: JAAS and roles attribute of logic:present

Reply via email to