I'm checking the permission then I render components. Something like
<p:submenu label="Documents"
rendered="#{securityProducer.isPermitted('file:view')}"/>
I'm using session bean to check user's permission. SecurityProducer is a
session bean but I'm not sure about is it good approach or not. I thought
that if ShiroHttpServletRequest has isUserPermitted method then I could
basically call it like
<p:submenu label="Documents"
rendered="#{request.isUserPermitted('file:view')}"/>
2013/12/10 Les Hazlewood <[email protected]>
> There is no 'isUserPermitted' method defined on the HttpServletRequest
> interface. The ShiroHttpServletRequest implementation implements the
> HttpServletRequest API and nothing more.
>
> What is it that you are trying to do?
>
> --
> Les Hazlewood | @lhazlewood
> CTO, Stormpath | http://stormpath.com | @goStormpath | 888.391.5282
>
>
> On Mon, Dec 2, 2013 at 7:08 AM, Muhammed Olgun <[email protected]> wrote:
>
>> Hello,
>>
>> Why ShiroHttpServletRequest doesn't have isUserPermitted method? I'm
>> using JSF and it would be great. Do you have any suggestion to check the
>> user if she's permitted on JSF xhtml file?
>>
>> Regards.
>> Muhammed
>>
>
>
