You could simply exclude them from Acegi processing altoghether by changing the configuration of the filterChainProxy in sercurity.xml?
Mike. On 2/13/07, Jon Loken <[EMAIL PROTECTED]> wrote:
Hi all, Just a quick question regarding Acegi authentication. How can I disable authentication for particular jsp pages. These jsp pages should then be freely accessible without being redirected to login.jsp. With Acegi/Appfuse being so flexible I would not be surprised if this can be done declaratively. At the moment the set of freely accessible jsp pages reside under folder /pages/static/. Inserting line: /static/*.html*=ROLE_ANONYMOUS in bean 'filterInvocationInterceptor' in file security.xml is not sufficient. A non declarative solution may that all requests pass by a filter that gives all users role 'ROLE_ANONYMOUS'? I would normally do more research before posting here, but need to resolve this fairly soon. Many thanks, Jon L. ______________________________________________________________________ This email has been scanned by the MessageLabs Email Security System. For more information visit http://www.virtual-email.net/messagelabs.htm
