Optional SecurityViolationHandler --------------------------------- Key: EXTCDI-229 URL: https://issues.apache.org/jira/browse/EXTCDI-229 Project: MyFaces CODI Issue Type: Improvement Components: JEE-JSF20-Module Affects Versions: 1.0.1 Reporter: Michael Kurz
I use @Secured with a custom AccessDecisionVoter checking if a user is logged in. If the user is not logged in I only want to redirect to the login page. Currently it is not possible to do this without creating a message in the FacesContext. As discussed with Gerhard, a simple solution for this would be an optional SecurityViolationHandler. If there is a bean for this type, it is used to handle SecurityViolation instances created in the voter. If not, the default behavior (adding messages to the facesContext) should be used. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa For more information on JIRA, see: http://www.atlassian.com/software/jira