Ah got it, must have been looking with my wrong glasses on earlier :)
You are using version 1.3.0 that version of SecureContainerCheck only
checks the class of the container, hence the message about missing
permissions for SecureWebMarkupContainer.
permission ${ComponentPermission}
"xxx.yyy.zzz.front.SecureWebMarkupContainer", "inherit, render,
enable";
should do the trick, however this will enable every
SecurewebMarkupContainer in your application which might not be what
you want.
There are several other options you can try:
-replace the ContainerSecurityCheck with a ComponentSecurityCheck
-switch to version 1.3-SNAPHOT, the ContainerSecurityCheck has been
modified to deal with this type of situation (i.e. check component
id's too) along with some more stuff to improve permission
inheritance.
-extend ContainersecurityCheck and overwrite isActionAuthorized with
the following code:
public boolean isActionAuthorized(WaspAction action)
{
if (enableAuthentication && !isAuthenticated())
throw new
RestartResponseAtInterceptPageException(getLoginPage());
boolean result =
getStrategy().isComponentAuthorized(getComponent(), action)
||
getStrategy().isClassAuthorized(getComponent().getClass(), action);
if (result && checkSecureModel() &&
SecureComponentHelper.hasSecureModel(getComponent()))
return
((ISecureModel)getComponent().getModel()).isAuthorized(getComponent(),
action);
return result;
}
This code comes from 1.3-SNAPSHOT but should be sufficient to work in
your case.
I recommend either option 1 or 2 depending on how comfortable you are
with snapshots
Maurice
On Tue, May 13, 2008 at 2:46 PM, Andrea Jahn <[EMAIL PROTECTED]> wrote:
>
>
>
> Hi,
>
> here the code again without the linebreaks:
>
> Hive:
>
>
> 01 // pages allowed for all users
> 02 grant
> 03 {
>
> 04 permission ${ComponentPermission} "xxx.yyy.zzz.front.Login", "inherit,
> render";
>
> 05 permission ${ComponentPermission} "xxx.yyy.zzz.front.Login", "enable";
>
> 06 permission ${ComponentPermission} "xxx.yyy.zzz.front.Welcome", "inherit,
> render";
>
> 07 permission ${ComponentPermission} "xxx.yyy.zzz.front.Welcome", "enable";
> 08
> 09 };
> 10
>
> 11 grant principal
> org.apache.wicket.security.hive.authorization.SimplePrincipal "APPL_ADMIN"
> 12 {
>
> 13 // Menu Administration - Product areas
>
> 14 permission ${ComponentPermission} "xxx.yyy.zzz.front.ProductAreaListPage",
> "inherit, render";
>
> 15 permission ${ComponentPermission} "xxx.yyy.zzz.front.ProductAreaListPage",
> "enable";
> 16
>
> 17 // Product area list page - Hidden panel
>
> 18 permission ${ComponentPermission}
> "xxx.yyy.zzz.front.ProductAreaListPage:resultHiddenPanel", "inherit, render,
> enable";
>
> 19 permission ${ComponentPermission}
> "xxx.yyy.zzz.front.ProductAreaListPage:resultHiddenPanel", "enable";
> 20 };
> 21
> 22
>
>
> Application.log
>
>
> 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 1: // pages allowed for all users
>
> 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
>
> 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 8:
>
> 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Login" "access, inherit, render" to everybody
>
> 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Welcome" "access, render, enable" to everybody
>
> 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Welcome" "access, inherit, render" to everybody
>
> 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Login" "access, render, enable" to everybody
>
> 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 10:
>
> 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 13: // Menu Administration - Product areas
>
> 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
>
> 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 16:
>
> 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 17: // Product area list page - Hidden panel
>
> 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, inherit, render" to [EMAIL
> PROTECTED] [mailto:[EMAIL PROTECTED]
> 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage:resultHiddenPanel" "access, render,
> enable" to [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
> 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage:resultHiddenPanel" "access, inherit,
> render, enable" to [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
> 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render, enable" to [EMAIL
> PROTECTED] [mailto:[EMAIL PROTECTED]
>
> 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 21:
>
> 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 22:
> 2008-05-13 12:26:31,741 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:214) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] implies
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Welcome" "access"
> 2008-05-13 12:26:31,960 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:214) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] implies
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Welcome" "access, render"
> 2008-05-13 12:26:31,960 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] has a cached match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Welcome" "access, render", result true
>
> 2008-05-13 12:26:31,960 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:214) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] implies
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render"
> 2008-05-13 12:26:32,178 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:195) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] has an exact match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render, enable"
>
> 2008-05-13 12:26:32,178 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] has a cached match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render, enable", result true
>
> 2008-05-13 12:26:32,178 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] has a cached match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render, enable", result true
>
> 2008-05-13 12:26:35,582 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:214) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] implies
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access"
>
> 2008-05-13 12:26:35,613 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] has a cached match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render", result true
>
> 2008-05-13 12:26:35,613 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] has a cached match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render", result true
>
> 2008-05-13 12:26:35,629 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] has a cached match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render", result true
>
> 2008-05-13 12:26:35,629 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:221) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] does not have or implies
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.security.SecureWebMarkupContainer" "access, render"
>
> 2008-05-13 12:26:37,237 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] has a cached match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render", result true
>
> 2008-05-13 12:26:37,346 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] has a cached match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render", result true
>
> 2008-05-13 12:26:37,346 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] has a cached match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render", result true
>
> 2008-05-13 12:26:37,362 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] has a cached match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.security.SecureWebMarkupContainer" "access, render",
> result false
>
>
>
> ProductAreaListPage.html
>
>
> <div wicket:id="resultHiddenPanel">
>
> <h3 style="margin-top:20pt;">Hidden/Deleted Items</h3>
>
> <span style="font-size:75%">
>
> <span wicket:id="productAreaHiddenNavigator">[PagingNavigator
> [|<][<]]</span>
>
> Results: <span wicket:id="resultHiddenCountLabel">[Number of results]</span>
> </span>
>
> <table class="list">
> <tr class="list">
> <th>ID</th>
> <th>Name</th>
> <th>Description</th>
> <th> </th>
> <th> </th>
> </tr>
>
> <tr wicket:id="productAreaHiddenTable" class="list">
>
> <td><span wicket:id="id">[id]</span></td>
>
> <td><span wicket:id="name">[name]</span></td>
>
> <td><span wicket:id="description">[description]</span></td>
>
> <td><span wicket:id="status">[status]</span></td>
>
> <td><a wicket:id="reactivateProductAreaLink">Reactivate…</a></td>
> </tr>
> </table>
> </div>
>
>
> ProductAreaListPage.java
>
>
> public class ProductAreaListPage extends SecuredBasePage
> {
>
> private SecureWebMarkupContainer resultHiddenPanel;
>
> public ProductAreaListPage() {
>
> resultHiddenPanel = new SecureWebMarkupContainer("resultHiddenPanel");
>
>
> // add DataView, Label, to resultHiddenPanel
>
> add(resultHiddenPanel);
>
> }
>
> }
>
>
> SecureWebMarkupContainer.java
>
>
> package xxx.yyy.zzz.front.security;
>
>
> public class SecureWebMarkupContainer extends WebMarkupContainer implements
> ISecureContainer
> {
>
>
>
> private static final long serialVersionUID = 1L;
>
>
> public SecureWebMarkupContainer(String id)
> {
> super(id);
> setSecurityCheck(new ContainerSecurityCheck(this));
>
> }
>
>
> public SecureWebMarkupContainer(String id, IModel model)
> {
> super(id, model);
> setSecurityCheck(new ContainerSecurityCheck(this));
> }
>
>
> public ISecurityCheck getSecurityCheck()
> {
> return SecureComponentHelper.getSecurityCheck(this);
>
> }
>
>
> public boolean isActionAuthorized(String waspAction)
> {
>
> return SecureComponentHelper.isActionAuthorized(this, waspAction);
> }
>
>
>
> public boolean isActionAuthorized(WaspAction action)
> {
>
> return SecureComponentHelper.isActionAuthorized(this, action);
> }
>
>
> public boolean isAuthenticated()
> {
> return SecureComponentHelper.isAuthenticated(this);
>
> }
>
>
> public void setSecurityCheck(ISecurityCheck check)
> {
> SecureComponentHelper.setSecurityCheck(this, check);
> }
>
> }
>
>
> Andrea
>
> *Von:* [email protected]
> *Gesendet:* 13.05.08 13:27:56
> *An:* [email protected]
> *Betreff:* Swarm: Authorization for WebMarkupContainer
>
>
>
>
>
> Hi,
>
> I tried to create a "SecureWebMarkupContainer" (contains a DataView,
> Label,..), which should be only visible for authorized users. But although
> the user has the permission "APPL_ADMIN", he cannot see the
> "resultHiddenPanel".
>
> Within the hive I used the wicket id "resultHiddenPanel" to identify the
> component, but within the logfile there's the message, that the component
> "SecureWebMarkupContainer" (class name) is not found.
>
> Perhaps do I have to create a subclass of SecureWebMarkupContainer for each
> WebMarkupContainer component and add that classname to the hive ?
>
> ---
>
> Code:
>
>
>
> Hive:<?xml:namespace prefix = o ns =
> "urn:schemas-microsoft-com:office:office" /><o:p></o:p>
>
> <o:p> </o:p>
>
> 01 // pages allowed for all users<o:p></o:p>
>
> 02 grant<o:p></o:p>
>
> 03 {<o:p></o:p>
>
> 04 permission ${ComponentPermission} "xxx.yyy.zzz.front.Login", "inherit,
> render";<o:p></o:p>
>
> 05 permission ${ComponentPermission} "xxx.yyy.zzz.front.Login",
> "enable";<o:p></o:p>
>
> 06 permission ${ComponentPermission} "xxx.yyy.zzz.front.Welcome", "inherit,
> render";<o:p></o:p>
>
> 07 permission ${ComponentPermission} "xxx.yyy.zzz.front.Welcome",
> "enable";<o:p></o:p>
>
> 08<o:p></o:p>
>
> 09 };<o:p></o:p>
>
> 10<o:p></o:p>
>
> 11 grant principal
> org.apache.wicket.security.hive.authorization.SimplePrincipal
> "APPL_ADMIN"<o:p></o:p>
>
> 12 { <o:p></o:p>
>
> 13 // Menu Administration - Product areas<o:p></o:p>
>
> 14 permission ${ComponentPermission}
> "xxx.yyy.zzz.front.ProductAreaListPage", "inherit, render";<o:p></o:p>
>
> 15 permission ${ComponentPermission}
> "xxx.yyy.zzz.front.ProductAreaListPage", "enable";<o:p></o:p>
>
> 16 <o:p></o:p>
>
> 17 // Product area list page - Hidden panel<o:p></o:p>
>
> 18 permission ${ComponentPermission}
> "xxx.yyy.zzz.front.ProductAreaListPage:resultHiddenPanel", "inherit, render,
> enable";<o:p></o:p>
>
> 19 permission ${ComponentPermission}
> "xxx.yyy.zzz.front.ProductAreaListPage:resultHiddenPanel",
> "enable";<o:p></o:p>
>
> 20 };<o:p></o:p>
>
> 21<o:p></o:p>
>
> 22<o:p></o:p>
>
> <o:p> </o:p>
>
> <o:p> </o:p>
>
> Application.log<o:p></o:p>
>
> <o:p> </o:p>
>
> 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 1: // pages allowed for all users<o:p></o:p>
>
> 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission<o:p></o:p>
>
> 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission<o:p></o:p>
>
> 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission<o:p></o:p>
>
> 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission<o:p></o:p>
>
> 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 8: <o:p></o:p>
>
> 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Login" "access, inherit, render" to everybody<o:p></o:p>
>
> 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Welcome" "access, render, enable" to everybody<o:p></o:p>
>
> 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Welcome" "access, inherit, render" to everybody<o:p></o:p>
>
> 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Login" "access, render, enable" to everybody<o:p></o:p>
>
> 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 10: <o:p></o:p>
>
> 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 13: // Menu Administration - Product areas<o:p></o:p>
>
> 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission<o:p></o:p>
>
> 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission<o:p></o:p>
>
> 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 16: <o:p></o:p>
>
> 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 17: // Product area list page - Hidden panel<o:p></o:p>
>
> 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission<o:p></o:p>
>
> 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission<o:p></o:p>
>
> 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, inherit, render" to [EMAIL
> PROTECTED]<o:p></o:p>
>
> 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "*xxx.yyy.zzz.front.ProductAreaListPage:resultHiddenPanel*" "access, render,
> enable" to [EMAIL PROTECTED]<o:p></o:p>
>
> 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "*xxx.yyy.zzz.front.ProductAreaListPage:resultHiddenPanel*" "access, inherit,
> render, enable" to [EMAIL PROTECTED]<o:p></o:p>
>
> 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render, enable" to [EMAIL
> PROTECTED]<o:p></o:p>
>
> 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 21: <o:p></o:p>
>
> 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 22: <o:p></o:p>
>
> <o:p> </o:p>
>
> <o:p> </o:p>
>
> 2008-05-13 12:26:31,741 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:214) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] implies
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Welcome" "access"<o:p></o:p>
>
> <o:p> </o:p>
>
> <o:p> </o:p>
>
> 2008-05-13 12:26:31,960 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:214) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] implies
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Welcome" "access, render"<o:p></o:p>
>
> 2008-05-13 12:26:31,960 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] has a cached
> match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Welcome" "access, render", result true<o:p></o:p>
>
> <o:p> </o:p>
>
> 2008-05-13 12:26:31,960 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:214) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] implies
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render"<o:p></o:p>
>
> <o:p> </o:p>
>
> <o:p> </o:p>
>
> 2008-05-13 12:26:32,178 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:195) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] has an exact
> match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render, enable"<o:p></o:p>
>
> <o:p> </o:p>
>
> 2008-05-13 12:26:32,178 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] has a cached
> match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render, enable", result
> true<o:p></o:p>
>
> <o:p> </o:p>
>
> 2008-05-13 12:26:32,178 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] has a cached
> match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render, enable", result
> true<o:p></o:p>
>
> <o:p> </o:p>
>
> 2008-05-13 12:26:35,582 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:214) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] implies
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access"<o:p></o:p>
>
> <o:p> </o:p>
>
> 2008-05-13 12:26:35,613 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] has a cached
> match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render", result
> true<o:p></o:p>
>
> <o:p> </o:p>
>
> 2008-05-13 12:26:35,613 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] has a cached
> match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render", result
> true<o:p></o:p>
>
> <o:p> </o:p>
>
> 2008-05-13 12:26:35,629 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] has a cached
> match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render", result
> true<o:p></o:p>
>
> <o:p> </o:p>
>
> 2008-05-13 12:26:35,629 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:221) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] does not have or
> implies
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "*xxx.yyy.zzz.front.security.SecureWebMarkupContainer*" "access,
> render"<o:p></o:p>
>
> <o:p> </o:p>
>
> 2008-05-13 12:26:37,237 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] has a cached
> match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render", result
> true<o:p></o:p>
>
> <o:p> </o:p>
>
> 2008-05-13 12:26:37,346 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] has a cached
> match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render", result
> true<o:p></o:p>
>
> <o:p> </o:p>
>
> 2008-05-13 12:26:37,346 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] has a cached
> match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render", result
> true<o:p></o:p>
>
> <o:p> </o:p>
>
> 2008-05-13 12:26:37,362 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] has a cached
> match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "*xxx.yyy.zzz.front.security.SecureWebMarkupContainer*" "access, render",
> result false<o:p></o:p>
>
> <o:p> </o:p>
>
> <o:p> </o:p>
>
> <o:p> </o:p>
>
> <o:p> </o:p>
>
> <o:p> </o:p>
>
> ProductAreaListPage.html <o:p></o:p>
>
> <o:p> </o:p>
>
> <o:p></o:p>
>
> <div wicket:id="resultHiddenPanel"><o:p></o:p>
>
> <h3 style="margin-top:20pt;">Hidden/Deleted Items</h3><o:p></o:p>
>
> <span style="font-size:75%"><o:p></o:p>
>
> <span wicket:id="productAreaHiddenNavigator">[PagingNavigator
> [|<][<]]</span><o:p></o:p>
>
> Results: <span wicket:id="resultHiddenCountLabel">[Number of
> results]</span><o:p></o:p>
>
> </span><o:p></o:p>
>
> <o:p></o:p>
>
> <table class="list"><o:p></o:p>
>
> <tr class="list"><o:p></o:p>
>
> <th>ID</th><o:p></o:p>
>
> <th>Name</th><o:p></o:p>
>
> <th>Description</th><o:p></o:p>
>
> <th> </th><o:p></o:p>
>
> <th> </th><o:p></o:p>
>
> </tr><o:p></o:p>
>
> <tr wicket:id="productAreaHiddenTable" class="list"><o:p></o:p>
>
> <td><span wicket:id="id">[id]</span></td><o:p></o:p>
>
> <td><span wicket:id="name">[name]</span></td><o:p></o:p>
>
> <td><span wicket:id="description">[description]</span></td><o:p></o:p>
>
> <td><span wicket:id="status">[status]</span></td><o:p></o:p>
>
> <td><a
> wicket:id="reactivateProductAreaLink">Reactivate…</a></td><o:p></o:p>
>
> </tr><o:p></o:p>
>
> </table><o:p></o:p>
>
> </div><o:p></o:p>
>
> <o:p></o:p>
>
> <o:p> </o:p>
>
> ProductAreaListPage.java<o:p></o:p>
>
> <o:p> </o:p>
>
> *public* *class* ProductAreaListPage *extends* SecuredBasePage<o:p></o:p>
>
> {<o:p></o:p>
>
> <o:p></o:p>
>
> *private* SecureWebMarkupContainer resultHiddenPanel;<o:p></o:p>
>
> <o:p> </o:p>
>
> *public* ProductAreaListPage() {<o:p></o:p>
>
> <o:p> </o:p>
>
> resultHiddenPanel = *new*
> SecureWebMarkupContainer("resultHiddenPanel");<o:p></o:p>
>
> <o:p> </o:p>
>
> // add DataView, Label, to resultHiddenPanel<o:p></o:p>
>
> <o:p> </o:p>
>
> add(resultHiddenPanel);<o:p></o:p>
>
> <o:p></o:p>
>
> }<o:p></o:p>
>
> <o:p></o:p>
>
> }<o:p></o:p>
>
> <o:p> </o:p>
>
> <o:p> </o:p>
>
> SecureWebMarkupContainer.java<o:p></o:p>
>
> <o:p> </o:p>
>
> *package* xxx.yyy.zzz.front.security;<o:p></o:p>
>
> <o:p> </o:p>
>
> *public* *class* SecureWebMarkupContainer *extends* WebMarkupContainer
> *implements* ISecureContainer<o:p></o:p>
>
> {<o:p></o:p>
>
> <o:p> </o:p>
>
> <o:p></o:p>
>
> *private* *static* *final* *long* /serialVersionUID/ = 1L;<o:p></o:p>
>
> <o:p> </o:p>
>
> <o:p></o:p>
>
> *public* SecureWebMarkupContainer(String id)<o:p></o:p>
>
> {<o:p></o:p>
>
> *super*(id);<o:p></o:p>
>
> setSecurityCheck(*new* ContainerSecurityCheck(*this*));<o:p></o:p>
>
> }<o:p></o:p>
>
> <o:p> </o:p>
>
> <o:p></o:p>
>
> *public* SecureWebMarkupContainer(String id, IModel model)<o:p></o:p>
>
> {<o:p></o:p>
>
> *super*(id, model);<o:p></o:p>
>
> setSecurityCheck(*new* ContainerSecurityCheck(*this*));<o:p></o:p>
>
> }<o:p></o:p>
>
> <o:p> </o:p>
>
> <o:p></o:p>
>
> *public* ISecurityCheck getSecurityCheck()<o:p></o:p>
>
> {<o:p></o:p>
>
> *return* SecureComponentHelper./getSecurityCheck/(*this*);<o:p></o:p>
>
> }<o:p></o:p>
>
> <o:p> </o:p>
>
> <o:p></o:p>
>
> *public* *boolean* isActionAuthorized(String waspAction)<o:p></o:p>
>
> {<o:p></o:p>
>
> *return* SecureComponentHelper./isActionAuthorized/(*this*,
> waspAction);<o:p></o:p>
>
> }<o:p></o:p>
>
> <o:p> </o:p>
>
> <o:p></o:p>
>
> *public* *boolean* isActionAuthorized(WaspAction action)<o:p></o:p>
>
> {<o:p></o:p>
>
> *return* SecureComponentHelper./isActionAuthorized/(*this*,
> action);<o:p></o:p>
>
> }<o:p></o:p>
>
> <o:p> </o:p>
>
> <o:p></o:p>
>
> *public* *boolean* isAuthenticated()<o:p></o:p>
>
> {<o:p></o:p>
>
> *return* SecureComponentHelper./isAuthenticated/(*this*);<o:p></o:p>
>
> }<o:p></o:p>
>
> <o:p> </o:p>
>
> <o:p></o:p>
>
> *public* *void* setSecurityCheck(ISecurityCheck check)<o:p></o:p>
>
> {<o:p></o:p>
>
> SecureComponentHelper./setSecurityCheck/(*this*, check);<o:p></o:p>
>
> }<o:p></o:p>
>
> <o:p> </o:p>
>
> }<o:p></o:p>
>
> <o:p> </o:p>
>
> <o:p></o:p>
>
>
>
> ----
>
> Maurice,
>
> thank's for the quick reply to my first question ! Should I (or could you)
> delete this question from the "Getting started with SWARM" page, as it was
> the wrong place to post the question ?
>
> Thanks
> Andrea
>
>
>
>
>
>
>
> Jetzt neu! Schützen Sie Ihren PC mit McAfee und WEB.DE. 30 Tage
> kostenlos testen. *http://www.pc-sicherheit.web.de/startseite/?mc=022220*
> [http://www.pc-sicherheit.web.de/startseite/?mc=022220]
>
>
>
>
>
>
> Schon gehört? Der neue WEB.DE MultiMessenger kann`s mit allen:
> *http://www.produkte.web.de/messenger/?did=3016*
> [http://www.produkte.web.de/messenger/?did=3016]
>
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
