Meaning either use the ComponentSecurityCheck or the snapshot version.
not that stuff about changing the policy file.
Mauirce
On Tue, May 13, 2008 at 3:21 PM, Maurice Marrink <[EMAIL PROTECTED]> wrote:
> Ah got it, must have been looking with my wrong glasses on earlier :)
> You are using version 1.3.0 that version of SecureContainerCheck only
> checks the class of the container, hence the message about missing
> permissions for SecureWebMarkupContainer.
> permission ${ComponentPermission}
> "xxx.yyy.zzz.front.SecureWebMarkupContainer", "inherit, render,
> enable";
> should do the trick, however this will enable every
> SecurewebMarkupContainer in your application which might not be what
> you want.
>
> There are several other options you can try:
> -replace the ContainerSecurityCheck with a ComponentSecurityCheck
> -switch to version 1.3-SNAPHOT, the ContainerSecurityCheck has been
> modified to deal with this type of situation (i.e. check component
> id's too) along with some more stuff to improve permission
> inheritance.
> -extend ContainersecurityCheck and overwrite isActionAuthorized with
> the following code:
>
> public boolean isActionAuthorized(WaspAction action)
> {
> if (enableAuthentication && !isAuthenticated())
> throw new
> RestartResponseAtInterceptPageException(getLoginPage());
> boolean result =
> getStrategy().isComponentAuthorized(getComponent(), action)
> ||
> getStrategy().isClassAuthorized(getComponent().getClass(), action);
> if (result && checkSecureModel() &&
> SecureComponentHelper.hasSecureModel(getComponent()))
> return
> ((ISecureModel)getComponent().getModel()).isAuthorized(getComponent(),
> action);
> return result;
> }
> This code comes from 1.3-SNAPSHOT but should be sufficient to work in
> your case.
>
> I recommend either option 1 or 2 depending on how comfortable you are
> with snapshots
>
> Maurice
>
>
>
> On Tue, May 13, 2008 at 2:46 PM, Andrea Jahn <[EMAIL PROTECTED]> wrote:
> >
> >
> >
> > Hi,
> >
> > here the code again without the linebreaks:
> >
> > Hive:
> >
> >
> > 01 // pages allowed for all users
> > 02 grant
> > 03 {
> >
> > 04 permission ${ComponentPermission} "xxx.yyy.zzz.front.Login", "inherit,
> render";
> >
> > 05 permission ${ComponentPermission} "xxx.yyy.zzz.front.Login", "enable";
> >
> > 06 permission ${ComponentPermission} "xxx.yyy.zzz.front.Welcome",
> "inherit, render";
> >
> > 07 permission ${ComponentPermission} "xxx.yyy.zzz.front.Welcome", "enable";
> > 08
> > 09 };
> > 10
> >
> > 11 grant principal
> org.apache.wicket.security.hive.authorization.SimplePrincipal "APPL_ADMIN"
> > 12 {
> >
> > 13 // Menu Administration - Product areas
> >
> > 14 permission ${ComponentPermission}
> "xxx.yyy.zzz.front.ProductAreaListPage", "inherit, render";
> >
> > 15 permission ${ComponentPermission}
> "xxx.yyy.zzz.front.ProductAreaListPage", "enable";
> > 16
> >
> > 17 // Product area list page - Hidden panel
> >
> > 18 permission ${ComponentPermission}
> "xxx.yyy.zzz.front.ProductAreaListPage:resultHiddenPanel", "inherit, render,
> enable";
> >
> > 19 permission ${ComponentPermission}
> "xxx.yyy.zzz.front.ProductAreaListPage:resultHiddenPanel", "enable";
> > 20 };
> > 21
> > 22
> >
> >
> > Application.log
> >
> >
> > 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 1: // pages allowed for all users
> >
> > 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> > 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> > 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> > 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> >
> > 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 8:
> >
> > 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Login" "access, inherit, render" to everybody
> >
> > 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Welcome" "access, render, enable" to everybody
> >
> > 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Welcome" "access, inherit, render" to everybody
> >
> > 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Login" "access, render, enable" to everybody
> >
> > 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 10:
> >
> > 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 13: // Menu Administration - Product areas
> >
> > 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> > 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> >
> > 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 16:
> >
> > 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 17: // Product area list page - Hidden panel
> >
> > 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> > 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> > 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, inherit, render" to [EMAIL
> PROTECTED] [mailto:[EMAIL PROTECTED]
> > 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage:resultHiddenPanel" "access, render,
> enable" to [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
> > 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage:resultHiddenPanel" "access, inherit,
> render, enable" to [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
> > 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render, enable" to [EMAIL
> PROTECTED] [mailto:[EMAIL PROTECTED]
> >
> > 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 21:
> >
> > 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 22:
> > 2008-05-13 12:26:31,741 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:214) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] implies
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Welcome" "access"
> > 2008-05-13 12:26:31,960 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:214) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] implies
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Welcome" "access, render"
> > 2008-05-13 12:26:31,960 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] has a cached match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Welcome" "access, render", result true
> >
> > 2008-05-13 12:26:31,960 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:214) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] implies
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render"
> > 2008-05-13 12:26:32,178 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:195) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] has an exact match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render, enable"
> >
> > 2008-05-13 12:26:32,178 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] has a cached match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render, enable", result true
> >
> > 2008-05-13 12:26:32,178 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] has a cached match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render, enable", result true
> >
> > 2008-05-13 12:26:35,582 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:214) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] implies
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access"
> >
> > 2008-05-13 12:26:35,613 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] has a cached match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render", result true
> >
> > 2008-05-13 12:26:35,613 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] has a cached match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render", result true
> >
> > 2008-05-13 12:26:35,629 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] has a cached match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render", result true
> >
> > 2008-05-13 12:26:35,629 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:221) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] does not have or implies
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.security.SecureWebMarkupContainer" "access, render"
> >
> > 2008-05-13 12:26:37,237 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] has a cached match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render", result true
> >
> > 2008-05-13 12:26:37,346 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] has a cached match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render", result true
> >
> > 2008-05-13 12:26:37,346 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] has a cached match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render", result true
> >
> > 2008-05-13 12:26:37,362 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] [mailto:[EMAIL
> PROTECTED] has a cached match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.security.SecureWebMarkupContainer" "access, render",
> result false
> >
> >
> >
> > ProductAreaListPage.html
> >
> >
> > <div wicket:id="resultHiddenPanel">
> >
> > <h3 style="margin-top:20pt;">Hidden/Deleted Items</h3>
> >
> > <span style="font-size:75%">
> >
> > <span wicket:id="productAreaHiddenNavigator">[PagingNavigator
> [|<][<]]</span>
> >
> > Results: <span wicket:id="resultHiddenCountLabel">[Number of
> results]</span>
> > </span>
> >
> > <table class="list">
> > <tr class="list">
> > <th>ID</th>
> > <th>Name</th>
> > <th>Description</th>
> > <th> </th>
> > <th> </th>
> > </tr>
> >
> > <tr wicket:id="productAreaHiddenTable" class="list">
> >
> > <td><span wicket:id="id">[id]</span></td>
> >
> > <td><span wicket:id="name">[name]</span></td>
> >
> > <td><span wicket:id="description">[description]</span></td>
> >
> > <td><span wicket:id="status">[status]</span></td>
> >
> > <td><a wicket:id="reactivateProductAreaLink">Reactivate…</a></td>
> > </tr>
> > </table>
> > </div>
> >
> >
> > ProductAreaListPage.java
> >
> >
> > public class ProductAreaListPage extends SecuredBasePage
> > {
> >
> > private SecureWebMarkupContainer resultHiddenPanel;
> >
> > public ProductAreaListPage() {
> >
> > resultHiddenPanel = new SecureWebMarkupContainer("resultHiddenPanel");
> >
> >
> > // add DataView, Label, to resultHiddenPanel
> >
> > add(resultHiddenPanel);
> >
> > }
> >
> > }
> >
> >
> > SecureWebMarkupContainer.java
> >
> >
> > package xxx.yyy.zzz.front.security;
> >
> >
> > public class SecureWebMarkupContainer extends WebMarkupContainer
> implements ISecureContainer
> > {
> >
> >
> >
> > private static final long serialVersionUID = 1L;
> >
> >
> > public SecureWebMarkupContainer(String id)
> > {
> > super(id);
> > setSecurityCheck(new ContainerSecurityCheck(this));
> >
> > }
> >
> >
> > public SecureWebMarkupContainer(String id, IModel model)
> > {
> > super(id, model);
> > setSecurityCheck(new ContainerSecurityCheck(this));
> > }
> >
> >
> > public ISecurityCheck getSecurityCheck()
> > {
> > return SecureComponentHelper.getSecurityCheck(this);
> >
> > }
> >
> >
> > public boolean isActionAuthorized(String waspAction)
> > {
> >
> > return SecureComponentHelper.isActionAuthorized(this, waspAction);
> > }
> >
> >
> >
> > public boolean isActionAuthorized(WaspAction action)
> > {
> >
> > return SecureComponentHelper.isActionAuthorized(this, action);
> > }
> >
> >
> > public boolean isAuthenticated()
> > {
> > return SecureComponentHelper.isAuthenticated(this);
> >
> > }
> >
> >
> > public void setSecurityCheck(ISecurityCheck check)
> > {
> > SecureComponentHelper.setSecurityCheck(this, check);
> > }
> >
> > }
> >
> >
> > Andrea
> >
> > *Von:* [email protected]
> > *Gesendet:* 13.05.08 13:27:56
> > *An:* [email protected]
> > *Betreff:* Swarm: Authorization for WebMarkupContainer
> >
> >
> >
> >
> >
> > Hi,
> >
> > I tried to create a "SecureWebMarkupContainer" (contains a DataView,
> Label,..), which should be only visible for authorized users. But although
> the user has the permission "APPL_ADMIN", he cannot see the
> "resultHiddenPanel".
> >
> > Within the hive I used the wicket id "resultHiddenPanel" to identify the
> component, but within the logfile there's the message, that the component
> "SecureWebMarkupContainer" (class name) is not found.
> >
> > Perhaps do I have to create a subclass of SecureWebMarkupContainer for
> each WebMarkupContainer component and add that classname to the hive ?
> >
> > ---
> >
> > Code:
> >
> >
> >
> > Hive:<?xml:namespace prefix = o ns =
> "urn:schemas-microsoft-com:office:office" /><o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > 01 // pages allowed for all users<o:p></o:p>
> >
> > 02 grant<o:p></o:p>
> >
> > 03 {<o:p></o:p>
> >
> > 04 permission ${ComponentPermission} "xxx.yyy.zzz.front.Login", "inherit,
> render";<o:p></o:p>
> >
> > 05 permission ${ComponentPermission} "xxx.yyy.zzz.front.Login",
> "enable";<o:p></o:p>
> >
> > 06 permission ${ComponentPermission} "xxx.yyy.zzz.front.Welcome",
> "inherit, render";<o:p></o:p>
> >
> > 07 permission ${ComponentPermission} "xxx.yyy.zzz.front.Welcome",
> "enable";<o:p></o:p>
> >
> > 08<o:p></o:p>
> >
> > 09 };<o:p></o:p>
> >
> > 10<o:p></o:p>
> >
> > 11 grant principal
> org.apache.wicket.security.hive.authorization.SimplePrincipal
> "APPL_ADMIN"<o:p></o:p>
> >
> > 12 { <o:p></o:p>
> >
> > 13 // Menu Administration - Product areas<o:p></o:p>
> >
> > 14 permission ${ComponentPermission}
> "xxx.yyy.zzz.front.ProductAreaListPage", "inherit, render";<o:p></o:p>
> >
> > 15 permission ${ComponentPermission}
> "xxx.yyy.zzz.front.ProductAreaListPage", "enable";<o:p></o:p>
> >
> > 16 <o:p></o:p>
> >
> > 17 // Product area list page - Hidden panel<o:p></o:p>
> >
> > 18 permission ${ComponentPermission}
> "xxx.yyy.zzz.front.ProductAreaListPage:resultHiddenPanel", "inherit, render,
> enable";<o:p></o:p>
> >
> > 19 permission ${ComponentPermission}
> "xxx.yyy.zzz.front.ProductAreaListPage:resultHiddenPanel",
> "enable";<o:p></o:p>
> >
> > 20 };<o:p></o:p>
> >
> > 21<o:p></o:p>
> >
> > 22<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > <o:p> </o:p>
> >
> > Application.log<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 1: // pages allowed for all users<o:p></o:p>
> >
> > 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission<o:p></o:p>
> >
> > 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission<o:p></o:p>
> >
> > 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission<o:p></o:p>
> >
> > 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission<o:p></o:p>
> >
> > 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 8: <o:p></o:p>
> >
> > 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Login" "access, inherit, render" to everybody<o:p></o:p>
> >
> > 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Welcome" "access, render, enable" to everybody<o:p></o:p>
> >
> > 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Welcome" "access, inherit, render" to everybody<o:p></o:p>
> >
> > 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Login" "access, render, enable" to everybody<o:p></o:p>
> >
> > 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 10: <o:p></o:p>
> >
> > 2008-05-13 12:26:14,566 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 13: // Menu Administration - Product areas<o:p></o:p>
> >
> > 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission<o:p></o:p>
> >
> > 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission<o:p></o:p>
> >
> > 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 16: <o:p></o:p>
> >
> > 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 17: // Product area list page - Hidden panel<o:p></o:p>
> >
> > 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission<o:p></o:p>
> >
> > 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.resolveAliases(PolicyFileHiveFactory.java:294)
> - resolved alias: ComponentPermission to
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission<o:p></o:p>
> >
> > 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, inherit, render" to [EMAIL
> PROTECTED]<o:p></o:p>
> >
> > 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "*xxx.yyy.zzz.front.ProductAreaListPage:resultHiddenPanel*" "access, render,
> enable" to [EMAIL PROTECTED]<o:p></o:p>
> >
> > 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "*xxx.yyy.zzz.front.ProductAreaListPage:resultHiddenPanel*" "access, inherit,
> render, enable" to [EMAIL PROTECTED]<o:p></o:p>
> >
> > 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.BasicHive.addPrincipal(BasicHive.java:108) -
> Adding
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render, enable" to [EMAIL
> PROTECTED]<o:p></o:p>
> >
> > 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 21: <o:p></o:p>
> >
> > 2008-05-13 12:26:14,581 DEBUG
> org.apache.wicket.security.hive.config.PolicyFileHiveFactory.skipLine(PolicyFileHiveFactory.java:949)
> - skipping line 22: <o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > <o:p> </o:p>
> >
> > 2008-05-13 12:26:31,741 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:214) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] implies
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Welcome" "access"<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > <o:p> </o:p>
> >
> > 2008-05-13 12:26:31,960 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:214) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] implies
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Welcome" "access, render"<o:p></o:p>
> >
> > 2008-05-13 12:26:31,960 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] has a cached
> match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.Welcome" "access, render", result true<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > 2008-05-13 12:26:31,960 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:214) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] implies
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render"<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > <o:p> </o:p>
> >
> > 2008-05-13 12:26:32,178 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:195) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] has an exact
> match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render, enable"<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > 2008-05-13 12:26:32,178 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] has a cached
> match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render, enable", result
> true<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > 2008-05-13 12:26:32,178 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] has a cached
> match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render, enable", result
> true<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > 2008-05-13 12:26:35,582 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:214) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] implies
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access"<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > 2008-05-13 12:26:35,613 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] has a cached
> match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render", result
> true<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > 2008-05-13 12:26:35,613 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] has a cached
> match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render", result
> true<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > 2008-05-13 12:26:35,629 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] has a cached
> match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render", result
> true<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > 2008-05-13 12:26:35,629 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:221) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] does not have or
> implies
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "*xxx.yyy.zzz.front.security.SecureWebMarkupContainer*" "access,
> render"<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > 2008-05-13 12:26:37,237 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] has a cached
> match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render", result
> true<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > 2008-05-13 12:26:37,346 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] has a cached
> match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render", result
> true<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > 2008-05-13 12:26:37,346 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] has a cached
> match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "xxx.yyy.zzz.front.ProductAreaListPage" "access, render", result
> true<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > 2008-05-13 12:26:37,362 DEBUG
> org.apache.wicket.security.hive.BasicHive.hasPermission(BasicHive.java:188) -
> Subjects[HashKey: 821489378, sortOrder 0 = [EMAIL PROTECTED] has a cached
> match for
> org.apache.wicket.security.hive.authorization.permissions.ComponentPermission
> "*xxx.yyy.zzz.front.security.SecureWebMarkupContainer*" "access, render",
> result false<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > <o:p> </o:p>
> >
> > <o:p> </o:p>
> >
> > <o:p> </o:p>
> >
> > <o:p> </o:p>
> >
> > ProductAreaListPage.html <o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > <o:p></o:p>
> >
> > <div wicket:id="resultHiddenPanel"><o:p></o:p>
> >
> > <h3 style="margin-top:20pt;">Hidden/Deleted Items</h3><o:p></o:p>
> >
> > <span style="font-size:75%"><o:p></o:p>
> >
> > <span wicket:id="productAreaHiddenNavigator">[PagingNavigator
> [|<][<]]</span><o:p></o:p>
> >
> > Results: <span wicket:id="resultHiddenCountLabel">[Number of
> results]</span><o:p></o:p>
> >
> > </span><o:p></o:p>
> >
> > <o:p></o:p>
> >
> > <table class="list"><o:p></o:p>
> >
> > <tr class="list"><o:p></o:p>
> >
> > <th>ID</th><o:p></o:p>
> >
> > <th>Name</th><o:p></o:p>
> >
> > <th>Description</th><o:p></o:p>
> >
> > <th> </th><o:p></o:p>
> >
> > <th> </th><o:p></o:p>
> >
> > </tr><o:p></o:p>
> >
> > <tr wicket:id="productAreaHiddenTable" class="list"><o:p></o:p>
> >
> > <td><span wicket:id="id">[id]</span></td><o:p></o:p>
> >
> > <td><span wicket:id="name">[name]</span></td><o:p></o:p>
> >
> > <td><span wicket:id="description">[description]</span></td><o:p></o:p>
> >
> > <td><span wicket:id="status">[status]</span></td><o:p></o:p>
> >
> > <td><a
> wicket:id="reactivateProductAreaLink">Reactivate…</a></td><o:p></o:p>
> >
> > </tr><o:p></o:p>
> >
> > </table><o:p></o:p>
> >
> > </div><o:p></o:p>
> >
> > <o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > ProductAreaListPage.java<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > *public* *class* ProductAreaListPage *extends* SecuredBasePage<o:p></o:p>
> >
> > {<o:p></o:p>
> >
> > <o:p></o:p>
> >
> > *private* SecureWebMarkupContainer resultHiddenPanel;<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > *public* ProductAreaListPage() {<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > resultHiddenPanel = *new*
> SecureWebMarkupContainer("resultHiddenPanel");<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > // add DataView, Label, to resultHiddenPanel<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > add(resultHiddenPanel);<o:p></o:p>
> >
> > <o:p></o:p>
> >
> > }<o:p></o:p>
> >
> > <o:p></o:p>
> >
> > }<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > <o:p> </o:p>
> >
> > SecureWebMarkupContainer.java<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > *package* xxx.yyy.zzz.front.security;<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > *public* *class* SecureWebMarkupContainer *extends* WebMarkupContainer
> *implements* ISecureContainer<o:p></o:p>
> >
> > {<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > <o:p></o:p>
> >
> > *private* *static* *final* *long* /serialVersionUID/ = 1L;<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > <o:p></o:p>
> >
> > *public* SecureWebMarkupContainer(String id)<o:p></o:p>
> >
> > {<o:p></o:p>
> >
> > *super*(id);<o:p></o:p>
> >
> > setSecurityCheck(*new* ContainerSecurityCheck(*this*));<o:p></o:p>
> >
> > }<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > <o:p></o:p>
> >
> > *public* SecureWebMarkupContainer(String id, IModel model)<o:p></o:p>
> >
> > {<o:p></o:p>
> >
> > *super*(id, model);<o:p></o:p>
> >
> > setSecurityCheck(*new* ContainerSecurityCheck(*this*));<o:p></o:p>
> >
> > }<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > <o:p></o:p>
> >
> > *public* ISecurityCheck getSecurityCheck()<o:p></o:p>
> >
> > {<o:p></o:p>
> >
> > *return* SecureComponentHelper./getSecurityCheck/(*this*);<o:p></o:p>
> >
> > }<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > <o:p></o:p>
> >
> > *public* *boolean* isActionAuthorized(String waspAction)<o:p></o:p>
> >
> > {<o:p></o:p>
> >
> > *return* SecureComponentHelper./isActionAuthorized/(*this*,
> waspAction);<o:p></o:p>
> >
> > }<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > <o:p></o:p>
> >
> > *public* *boolean* isActionAuthorized(WaspAction action)<o:p></o:p>
> >
> > {<o:p></o:p>
> >
> > *return* SecureComponentHelper./isActionAuthorized/(*this*,
> action);<o:p></o:p>
> >
> > }<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > <o:p></o:p>
> >
> > *public* *boolean* isAuthenticated()<o:p></o:p>
> >
> > {<o:p></o:p>
> >
> > *return* SecureComponentHelper./isAuthenticated/(*this*);<o:p></o:p>
> >
> > }<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > <o:p></o:p>
> >
> > *public* *void* setSecurityCheck(ISecurityCheck check)<o:p></o:p>
> >
> > {<o:p></o:p>
> >
> > SecureComponentHelper./setSecurityCheck/(*this*, check);<o:p></o:p>
> >
> > }<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > }<o:p></o:p>
> >
> > <o:p> </o:p>
> >
> > <o:p></o:p>
> >
> >
> >
> > ----
> >
> > Maurice,
> >
> > thank's for the quick reply to my first question ! Should I (or could
> you) delete this question from the "Getting started with SWARM" page, as it
> was the wrong place to post the question ?
> >
> > Thanks
> > Andrea
> >
> >
> >
> >
> >
> >
> >
> > Jetzt neu! Schützen Sie Ihren PC mit McAfee und WEB.DE. 30 Tage
> > kostenlos testen. *http://www.pc-sicherheit.web.de/startseite/?mc=022220*
> [http://www.pc-sicherheit.web.de/startseite/?mc=022220]
> >
> >
> >
> >
> >
> >
> > Schon gehört? Der neue WEB.DE MultiMessenger kann`s mit allen:
> > *http://www.produkte.web.de/messenger/?did=3016*
> [http://www.produkte.web.de/messenger/?did=3016]
> >
>
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
