Optional SecurityViolationHandler
---------------------------------
Key: EXTCDI-229
URL: https://issues.apache.org/jira/browse/EXTCDI-229
Project: MyFaces CODI
Issue Type: Improvement
Components: JEE-JSF20-Module
Affects Versions: 1.0.1
Reporter: Michael Kurz
I use @Secured with a custom AccessDecisionVoter checking if a user is logged
in. If the user is not logged in I only want to redirect to the login page.
Currently it is not possible to do this without creating a message in the
FacesContext.
As discussed with Gerhard, a simple solution for this would be an optional
SecurityViolationHandler. If there is a bean for this type, it is used to
handle SecurityViolation instances created in the voter. If not, the default
behavior (adding messages to the facesContext) should be used.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
