[jboss-user] [JBoss Seam] - Re: Security Authentificaiton of a Seam Application
[EMAIL PROTECTED] wrote : If you can wait a bit longer for the Seam security features to be completed, I think you'll find you'll be able to apply much more interesting security policies to your application. Just saw that 1.1.5 is out... I can't wait to see some examples on this... Please Norman point us to some examples as soon as they are available. ;-) Thanks View the original post : http://www.jboss.com/index.html?module=bbop=viewtopicp=4009168#4009168 Reply to the post : http://www.jboss.com/index.html?module=bbop=postingmode=replyp=4009168 ___ jboss-user mailing list jboss-user@lists.jboss.org https://lists.jboss.org/mailman/listinfo/jboss-user
[jboss-user] [JBoss Seam] - Re: Security Authentificaiton of a Seam Application
toni wrote : How can I render parts of the page depending on the user role with this kind of security setup? | | I would like to hide or show menu items depending on whether or not the user belongs to a certain rule. Same here toni ;-) View the original post : http://www.jboss.com/index.html?module=bbop=viewtopicp=4009169#4009169 Reply to the post : http://www.jboss.com/index.html?module=bbop=postingmode=replyp=4009169 ___ jboss-user mailing list jboss-user@lists.jboss.org https://lists.jboss.org/mailman/listinfo/jboss-user
[jboss-user] [JBoss Seam] - Re: Security Authentificaiton of a Seam Application
markfoerstein wrote : toni wrote : How can I render parts of the page
depending on the user role with this kind of security setup?
| |
| | I would like to hide or show menu items depending on whether or not the
user belongs to a certain rule.
|
| Same here toni ;-)
Easy:
h:commandButton value=Self Destruct action=#{machine.selfDestruct}
rendered=#{s:hasPermission('machine','selfDestruct',machine)}/
(Using 1.1.5, of course.)
If you don't have instance-level security, the following simpler form will
suffice:
h:commandButton value=Self Destruct action=#{machine.selfDestruct}
rendered=#{s:hasPermission('machine','selfDestruct')}/
And if all you have is role-based security, the following is even simpler:
h:commandButton value=Self Destruct action=#{machine.selfDestruct}
rendered=#{s:hasRole('hero')}/
View the original post :
http://www.jboss.com/index.html?module=bbop=viewtopicp=4009171#4009171
Reply to the post :
http://www.jboss.com/index.html?module=bbop=postingmode=replyp=4009171
___
jboss-user mailing list
jboss-user@lists.jboss.org
https://lists.jboss.org/mailman/listinfo/jboss-user
[jboss-user] [JBoss Seam] - Re: Security Authentificaiton of a Seam Application
Wow, instant answer. Are you a human or a forum bot or something...;-) PS: I liked the self destruct thing ;-) Will check it out... Thanks Gavin. View the original post : http://www.jboss.com/index.html?module=bbop=viewtopicp=4009174#4009174 Reply to the post : http://www.jboss.com/index.html?module=bbop=postingmode=replyp=4009174 ___ jboss-user mailing list jboss-user@lists.jboss.org https://lists.jboss.org/mailman/listinfo/jboss-user
[jboss-user] [JBoss Seam] - Re: Security Authentificaiton of a Seam Application
Does JSF provide any means of checking for the role the user is in? View the original post : http://www.jboss.com/index.html?module=bbop=viewtopicp=4008160#4008160 Reply to the post : http://www.jboss.com/index.html?module=bbop=postingmode=replyp=4008160 ___ jboss-user mailing list jboss-user@lists.jboss.org https://lists.jboss.org/mailman/listinfo/jboss-user
[jboss-user] [JBoss Seam] - Re: Security Authentificaiton of a Seam Application
One final question: How can I render parts of the page depending on the user role with this kind of security setup? I would like to hide or show menu items depending on whether or not the user belongs to a certain rule. View the original post : http://www.jboss.com/index.html?module=bbop=viewtopicp=4007740#4007740 Reply to the post : http://www.jboss.com/index.html?module=bbop=postingmode=replyp=4007740 ___ jboss-user mailing list jboss-user@lists.jboss.org https://lists.jboss.org/mailman/listinfo/jboss-user
[jboss-user] [JBoss Seam] - Re: Security Authentificaiton of a Seam Application
I have now used the web.xml and it works fine for me. There is a good JAASExample in the wiki. I can recommend it. Just one last question. I noticed that the j_security_check is the URL to which the request for a FORM login gets posted to. Is that a constant or can we change it? And how could I provide it to a h:form tag in JSF? View the original post : http://www.jboss.com/index.html?module=bbop=viewtopicp=4006711#4006711 Reply to the post : http://www.jboss.com/index.html?module=bbop=postingmode=replyp=4006711 ___ jboss-user mailing list jboss-user@lists.jboss.org https://lists.jboss.org/mailman/listinfo/jboss-user
[jboss-user] [JBoss Seam] - Re: Security Authentificaiton of a Seam Application
That is a magic value defined by the servlet spec (which is totally atrociously bad on authentication). View the original post : http://www.jboss.com/index.html?module=bbop=viewtopicp=4006824#4006824 Reply to the post : http://www.jboss.com/index.html?module=bbop=postingmode=replyp=4006824 ___ jboss-user mailing list jboss-user@lists.jboss.org https://lists.jboss.org/mailman/listinfo/jboss-user
[jboss-user] [JBoss Seam] - Re: Security Authentificaiton of a Seam Application
Does web.xml security give you the functionality you want? If so, then go ahead and use it. JBoss makes it really easy to work with. The problem is that the functionality just isn't very advanced. If you can wait a bit longer for the Seam security features to be completed, I think you'll find you'll be able to apply much more interesting security policies to your application. View the original post : http://www.jboss.com/index.html?module=bbop=viewtopicp=4006561#4006561 Reply to the post : http://www.jboss.com/index.html?module=bbop=postingmode=replyp=4006561 ___ jboss-user mailing list jboss-user@lists.jboss.org https://lists.jboss.org/mailman/listinfo/jboss-user
