Hi Bart, You can study the wicket-auth-roles project to see how you can use authorization based on roles. Wicket-auth-roles does this at the component level. Better yet, this (still incomplete but useable) wiki page shows you how to integrate Acegi with Wicket: http://cwiki.apache.org/WICKET/acegi-and-wicket-auth-roles.html.
Regards, Erik. Bart Molenkamp wrote: > > Hi, > > In IRoleCheckingStrategy, the method hasAnyRole() only gets > a collection of roles to check against. Would it be possible > to pass the component that is checked as well? > > I'm trying to integrate Wicket with Acegi security, and I > want to let Acegi's AccessDecisionManager check if the > instantiation or action is authorized or not. But I need to > pass the 'secured object', which is the component in my case. > > I can provide a patch, if anyone wants it. > > Thanks, > Bart. -- Erik van Oosten http://2008.rubyenrails.nl/ http://day-to-day-stuff.blogspot.com/ -- View this message in context: http://www.nabble.com/Passing-the-component-that-is-checked-to-IRoleCheckingStrategy.hasAnyRole%28%29-tf4108563.html#a11696777 Sent from the Wicket - Dev mailing list archive at Nabble.com.