I want to write a TemplateSecureSessionValidator that will allow anonymous
access to a defined set of templates and actions in addition to the Login
template and LoginUser action in order to allow things like user
registration. Does anybody think this is a bad idea or have a more
preferable way of doing this?
I suppose I could enumerate the session validation excludable templates and
actions in TR.props like the following:
action.sessionvalidator.template.exclude.1=UserRegistration
action.sessionvalidator.template.exclude.2=UserPrefrences
etc...
action.sessionvalidator.action.exclude.1=RegisterUser
etc..
Then check that the requested template and action in the session validator
and allow access if they are one of the above..
Comments? Thanks
Chris C
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
