Thanks all for your help,
The second suggestion worked fine, namely to place
/yourjsppattern.jsp*=ROLE_ANONYMOUS
AT THE TOP of the value list. Before this line was at the bottom of the
list, hence the problem.
Much appreciated,
Jon
-----Original Message-----
From: Matt Raible [mailto:[EMAIL PROTECTED]
Sent: 13 February 2007 18:48
To: [email protected]
Subject: Re: [appfuse-user] acegi - disable authentication for
particular jsp pages (using spring MVC)
In the filterChainProxy bean, you could use the #NONE# keyword like we
do for images and such:
<property name="filterInvocationDefinitionSource">
<value>
CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
PATTERN_TYPE_APACHE_ANT
/images/**=#NONE#
/scripts/**=#NONE#
/styles/**=#NONE#
/**=httpSessionContextIntegrationFilter,authenticationProcessingFilter,s
ecurityContextHolderAwareRequestFilter,rememberMeProcessingFilter,anonym
ousProcessingFilter,exceptionTranslationFilter,filterInvocationIntercept
or
</value>
Or in the filterInvocationInterceptor, add your pattern as the first one
with ROLE_ANONYMOUS:
<property name="objectDefinitionSource">
<value>
PATTERN_TYPE_APACHE_ANT
/yourjsppattern.jsp*=ROLE_ANONYMOUS
/activeUsers.*=admin
/clickstreams.jsp*=admin
/flushCache.*=admin
/passwordHint.html*=ROLE_ANONYMOUS,admin,user
/reload.*=admin
/signup.html*=ROLE_ANONYMOUS,admin,user
/users.html*=admin
/**/*.html*=admin,user
</value>
______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information visit http://www.virtual-email.net/messagelabs.htm
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
