I think I have discovered the problem - the security.xml file has some
security advice filters that are restricting access to certain methods in
the UserManager. (getUsers() and removeUser()).
tonyl wrote:
>
> Here's a more full stack trace - still getting the problem - but only with
> Users,
Here's a more full stack trace - still getting the problem - but only with
Users, not Groups.
Caused by: javax.faces.el.EvaluationException: Bean:
com.openlogic.blueglue.webapp.action.UserList, property: users
at
org.apache.myfaces.el.PropertyResolverImpl.getProperty(PropertyResolverImpl.
I already made User.getAuthorities() call User.getAllAuthorities() and that's
what allowed me to log in and have the mainMenu.xhtml display the links to
the admin secured areas. It's just that when I then click to view the Users
List - I get the access denied error.
I'll try it.
mraible wrote:
What if you change User.getAllAuthorities to be User.getAuthorities -
does that work?
Matt
On 2/26/07, tonyl <[EMAIL PROTECTED]> wrote:
I get the following error:
Caused by: org.acegisecurity.AccessDeniedException: Access is denied
at
org.acegisecurity.vote.AffirmativeBased.decide(Aff
I get the following error:
Caused by: org.acegisecurity.AccessDeniedException: Access is denied
at
org.acegisecurity.vote.AffirmativeBased.decide(AffirmativeBased.java:68)
at
org.acegisecurity.intercept.AbstractSecurityInterceptor.beforeInvocation(AbstractSecurityInterceptor.java:
On 2/26/07, tonyl <[EMAIL PROTECTED]> wrote:
The following code got me a whole lot farther than I expected. I'm getting an
Access Denied Error however. The code that checks for that is in
UserSecurityAdvice - correct?
It depends on when you get the access denied error. You might try
running a
The following code got me a whole lot farther than I expected. I'm getting an
Access Denied Error however. The code that checks for that is in
UserSecurityAdvice - correct?
public GrantedAuthority[] getAuthorities()
{
/*
List authorities = new
LinkedList();
au
Matt,
I checked out the JIRA issue, and it redirects to
http://opensource.atlassian.com/projects/spring/browse/SEC-272
which is still open. I'll check the sample apps, too.
mraible wrote:
>
> Apparently, Acegi security supports groups now, but I couldn't find
> any documentation on it. Yo
Apparently, Acegi security supports groups now, but I couldn't find
any documentation on it. You might want to check one of their sample
apps.
http://opensource.atlassian.com/projects/spring/browse/SEC-325
Matt
On 2/26/07, tonyl <[EMAIL PROTECTED]> wrote:
So, we are adding groups of users to
So, we are adding groups of users to the base application generated by
AppFuse, and we have set up the groups to accept Roles, just like Users. The
issue that I am having is how to have the session recognize the amalgamation
of roles from both the User and the Groups that the User belongs to.
For
10 matches
Mail list logo
