In the filterInvocationInterceptor you can say that they are restricted to the ROLE_ANONYMOUS.
On 2/13/07, Jon Loken <[EMAIL PROTECTED]> wrote:
Hi again, I've had a closer look at filterChainProxy, but cannot see any immediate way to disable a small set of jsp's from being authenticated. Has anyone experience with preventing a small set of jps from going through the Acegi login sequence? The jps pages in question are static, but cater for i18n. Regards Jon ------------------------------ *From:* Michael Horwitz [mailto:[EMAIL PROTECTED] *Sent:* 13 February 2007 11:28 *To:* users@appfuse.dev.java.net *Subject:* Re: [appfuse-user] acegi - disable authentication for particular jsp pages (using spring MVC) You could simply exclude them from Acegi processing altoghether by changing the configuration of the filterChainProxy in sercurity.xml? Mike. On 2/13/07, Jon Loken <[EMAIL PROTECTED]> wrote: > > Hi all, > > Just a quick question regarding Acegi authentication. > > How can I disable authentication for particular jsp pages. These jsp > pages should then be freely accessible without being redirected to > login.jsp. With Acegi/Appfuse being so flexible I would not be surprised > if this can be done declaratively. > > At the moment the set of freely accessible jsp pages reside under folder > /pages/static/. > Inserting line: > /static/*.html*=ROLE_ANONYMOUS > in bean 'filterInvocationInterceptor' in file security.xml is not > sufficient. > > A non declarative solution may that all requests pass by a filter that > gives all users role 'ROLE_ANONYMOUS'? > > I would normally do more research before posting here, but need to > resolve this fairly soon. > > Many thanks, > Jon L. > > ______________________________________________________________________ > This email has been scanned by the MessageLabs Email Security System. > For more information visit http://www.virtual-email.net/messagelabs.htm > > ------------------------------ This email has been scanned by Netintelligence http://www.netintelligence.com/email ------------------------------ ______________________________________________________________________ This email has been scanned by the MessageLabs Email Security System. For more information visit http://www.virtual-email.net/messagelabs.htm ______________________________________________________________________ This email has been scanned by the MessageLabs Email Security System. For more information visit http://www.virtual-email.net/messagelabs.htm
