Hi Bart,
You can study the wicket-auth-roles project to see how you can use
authorization based on roles. Wicket-auth-roles does this at the component
level. Better yet, this (still incomplete but useable) wiki page shows you
how to integrate Acegi with Wicket:
http://cwiki.apache.org/WICKET/acegi-and-wicket-auth-roles.html.
Regards,
Erik.
Bart Molenkamp wrote:
>
> Hi,
>
> In IRoleCheckingStrategy, the method hasAnyRole() only gets
> a collection of roles to check against. Would it be possible
> to pass the component that is checked as well?
>
> I'm trying to integrate Wicket with Acegi security, and I
> want to let Acegi's AccessDecisionManager check if the
> instantiation or action is authorized or not. But I need to
> pass the 'secured object', which is the component in my case.
>
> I can provide a patch, if anyone wants it.
>
> Thanks,
> Bart.
--
Erik van Oosten
http://2008.rubyenrails.nl/
http://day-to-day-stuff.blogspot.com/
--
View this message in context:
http://www.nabble.com/Passing-the-component-that-is-checked-to-IRoleCheckingStrategy.hasAnyRole%28%29-tf4108563.html#a11696777
Sent from the Wicket - Dev mailing list archive at Nabble.com.
