As per http://wicket.apache.org/learn/projects/authroles.html@AuthorizeInstantiation takes a single string.
You're literaly passing it "Useradministrator (SMW_GUI_USERADMIN_ROLE)" as a single role. Perhaps you meant @AuthorizeInstantiation(Useradministrator(SMW_GUI_USERADMIN_ROLE))? ~ Thank you, Paul Bors On Mon, Apr 29, 2013 at 6:57 AM, <christoph.ma...@t-systems.com> wrote: > Hello, > > my app extends from AuthenticatedWebApplication. Some pages should have > seen by user with a certain role. So I write this: > @AuthorizeInstantiation("Useradministrator (SMW_GUI_USERADMIN_ROLE)") > > But when I login with a user with another role. This user can see this > page. Have you any idea why? > > > Mit freundlichen Grüßen > Christoph Manig > Systems Engineer > > T-Systems International GmbH > Systems Integration - SC Travel, Transport & Logistics > Hoyerswerdaer Str. 18 > 01099 Dresden > tel.: +49 (0) 351 / 8152 - 188 > fax: +49 (0) 351 / 8152 - 209 > email: christoph.ma...@t-systems.com > > > >