Dear All,
This may be a simple-one. Apologies if it is.
I'm looking at page-protection and am following the tasks in the Cocoon Developers
Handbook.
(I'll be moving to the authentication-framework later but I like to know all the
Cocoon capabilities first.)
One of these allows page-protection using the sitemap code below.
What this should do is allow the user to access pages 'support/*' ONLY if the USER
parameter is set
- otherwise the user is redirected to login.html.
However when I use it without setting any USER session parameter I can still see the
pages.
Any ideas.
Thanks,
Kieran.
-------------------------------------------------
<map:match type="sessionstate" pattern="*">
<map:parameter name="attribute-name" value="user"/>
<map:match pattern="support/*">
<map:generate type="serverpages" src="xsp/{1}.xsp"/>
<map:transform type="xslt" src="resources/main.xsl"/>
<map:serialize type="html"/>
</map:match>
</map:match>
<map:match pattern="support/**">
<map:redirect-to uri="../login.html"/>
</map:match>
--------------------------------------------------
_____________________________________________
Kieran Kirwan
Executive Transportation Planner
Transportation Modelling Department
Dublin Transportation Office
Hainault House,
69/71 St. Stephen's Green,
Dublin 2,
Ireland.
Tel: +353 (0)1 4778113
Fax: +353 (0) 1 478 5935
website: www.dto.ie <http://www.dto.ie/>
This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they
are addressed. If you have received this email in error please notify
the system manager.
This footnote also confirms that this email message has been swept by
Mail Marshal for the presence of computer viruses.
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
