Yes, I have <property name="security">true</property> set in my andromda.xml file and have defined a realm. Am using andromda-3.1-M1.
Don't think the issue is one of authorization. It's a one of exposure. I typically do not allow direct access to the jsp's by putting them under WEB-INF where they are protected by the container. FYI, my model does have an actor with a role defined and this actor is associated with the use case. I was logged in as a user with the role and was able to access the jsp directly. Logged in as a user without the role results in an access denied (http 403 status code). _________________________________________________________ Reply to the post : http://galaxy.andromda.org/forum/viewtopic.php?p=948#948 Posting to http://forum.andromda.org/ is preferred over posting to the mailing list! ------------------------------------------------------- This SF.Net email is sponsored by: NEC IT Guy Games. How far can you shotput a projector? How fast can you ride your desk chair down the office luge track? If you want to score the big prize, get to know the little guy. Play to win an NEC 61" plasma display: http://www.necitguy.com/?r=20 _______________________________________________ Andromda-user mailing list Andromda-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/andromda-user
