Hi,
I would recommend looking at the source for
org.apache.turbine.modules.actions.AccessControlList
...snip...
if (acl == null)
{
log.debug("No ACL found in Session, building fresh ACL");
acl = TurbineSecurity.getACL(user);
data.getSession().setAttribute(
AccessControlList.SESSION_KEY, acl);
log.debug("ACL is " + acl);
}
data.setACL(acl);
...end snip...
maybe this will point you in the right direction... use the source! it's
your friend :)
On Thu, 19 May 2005, Zidarics Zoltan wrote:
> Hi All,
>
> I would like to load a screen which is secured after the user logined, but
> user hasn�t acl.
> When I stop request, and reload it, it works well. What can I do on login
> action, to force reading acl?
> Normally user redirected to index.vm after login, which is normalScreen
> descendant, so it works well. My admin screen is SecureScreen descendant, so
> it needs acl.
>
> I was try my own Login screen:
>
> if (user.getConfirmed().compareTo(User.CONFIRM_DATA) ==
> 0) {
> data.setUser(user);
> user.setHasLoggedIn(Boolean.TRUE);
> user.updateLastLogin();
> data.save();
> AccessControlList acl = data.getACL();
> acl is null at this point.
>
> ---
> thx,
> Zoltan Zidarics programmer
> PTE University Pecs, Hungary
> icq: 43288694
--
Thank you,
Jeffery Painter
2431 Reunion Meadows Lane
Apex, NC 27539
voice: 919.321.0378
- --
[EMAIL PROTECTED] http://jeff.kiasoft.com
PGP FP: 9CE8 83A2 33FA 32B1 0AB1 4E62 E4CB E4DA 5913 EFBC
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
iD8DBQE/qEQE5Mvk2lkT77wRAnMJAJ9vJ6qOkg/mvqqIpz7troCEQJ8bFACglu/U
YNXabx7DZOV2Hd9LwSTmGpY=
=dWiu
-----END PGP SIGNATURE-----
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
