Re: [Wicket-develop] Proposal: IAuthorizationStrategy improvement

[Igor Vaynberg]

you do have the extension point. you have the page itself, or you can register another componentinstantiationlistener which is exactly what the security strategy is.

Application:241

// Install default component instantiation listener that uses
        // authorization strategy to check component instantiations.
        addComponentInstantiationListener(new IComponentInstantiationListener()
        {
            /**
             * @see wicket.application.IComponentInstantiationListener#onInstantiation (wicket.Component)
             */
            public void onInstantiation(final Component component)
            {
                // If component instantiation is not authorized
                if (!Session.get().getAuthorizationStrategy().isInstantiationAuthorized(
                        component.getClass()))
                {
                    // then call any unauthorized component instantiation
                    // listener
                    getSecuritySettings().getUnauthorizedComponentInstantiationListener()
                            .onUnauthorizedInstantiation(component);
                }
            }
        });

there is no magic to the auth strategy.

-Igor

On 8/11/06, Stefan Arentz <[EMAIL PROTECTED]> wrote:

On 8/11/06, Eelco Hillenius <[EMAIL PROTECTED]> wrote:
> I'm not in favor of this proposal. A framework should watch out not to
> a kitchen sink for everything you can image. You give the example of
> page parameters now. But what about constructor arguments in general?
> What about the model?

I totally agree about the kitchen sink. However, I think protecting
pages that have parameters is not an unusual request. I think Wicket
should either support intercepting pages with PageParameters or have
some kind of extension point so that I can implement this myself in my
own app.

S.

-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________
Wicket-develop mailing list
Wicket-develop@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/wicket-develop

-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________
Wicket-develop mailing list
Wicket-develop@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/wicket-develop