I wasn't quite right as this works only when auth="true". Vikas
On Apr 4, 2012, at 12:51 PM, Vikas Mayur wrote: > You may try to setup a base permission, check the ofbiz-component.xml file > from any application component and look especially at the base-permission > element under the webapp tag. For each user you want to give access should > have this permission. > > Regards > Vikas > > On Apr 4, 2012, at 12:15 AM, Boris Hamanov wrote: > >> Hi guys and gals, >> >> My case is that I need to make the default ecommerce app to be accesible to >> authenticated users only. Don't ask why, it is a weird requirement. >> I don't want to go and make every request-map in the >> specialpurpose\ecommerce\webapp\ecommerce\WEB-INF\controller.xml with >> <security auth="true"; there are just too many of them there. >> Is there a more elegant way to deny public access of all and every part of >> the ecommerce application? >> >> Any help or suggestion is much appreatiated, you could spare me a lot of >> pain here. Thanks! >