Not entirely sure what you mean by deeplink. The simplest approach may be to enable the remember me option by default, which would work as long as the cell phone browser is capable of storing/working with cookies.
Otherwise you would probably want to issue a token server side and pass a reference to the client which could be used as a request parameter. This approach would require some digging around in ACEGI. Both approaches have security vulnerabilities, so caution is advised. You may want to raise a question on the ACEGI list - someone out there is bound to have tried something like this. Mike. On 8/16/07, Martin Ravell <[EMAIL PROTECTED]> wrote: > > Hi Mike, > > Thanks for that. This will solve one issue. > > Do you know if there is a way I can deeplink passing the username and > password though as parameters? I've had my customer request today that > they be able to deeplink like this but to include the usual authentication > check based on parms (rather than show the login page). > > Is this possible or would I have to mess about with Acegi / filters etc? > > > Regards > Marty > > > If you are happy for the page to be publicly accessible from both a > phone > > and the web then simply configure the URL/s to allow anonymous access in > > security.xml: > > > > <bean id="filterInvocationInterceptor" class=" > > org.acegisecurity.intercept.web.FilterSecurityInterceptor"> > > <property name="authenticationManager" > > ref="authenticationManager"/> > > <property name="accessDecisionManager" > > ref="accessDecisionManager"/> > > <property name="objectDefinitionSource"> > > <value> > > PATTERN_TYPE_APACHE_ANT > > /activeUsers.*=ROLE_ADMIN > > /clickstreams.jsp*=ROLE_ADMIN > > /flushCache.*=ROLE_ADMIN > > /passwordHint.html*=ROLE_ANONYMOUS,ROLE_ADMIN,ROLE_USER > > /reload.*=ROLE_ADMIN > > /signup.html*=ROLE_ANONYMOUS,ROLE_ADMIN,ROLE_USER > > /a4j.res/*.html*=ROLE_ANONYMOUS,ROLE_ADMIN,ROLE_USER > <!-- > > APF-737, OK to remove if not using JSF --> > > /users.html*=ROLE_ADMIN > > /**/*.html*=ROLE_ADMIN,ROLE_USER > > </value> > > </property> > > </bean> > > > > Mike > > > > > > On 8/16/07, Martin Ravell <[EMAIL PROTECTED]> wrote: > >> > >> What would be the best / simplest way to allow a page to be accessed > >> without having to login to the (Appfuse 2M5) application? > >> > >> Alternatively is there a simple way to allow for the username and > >> password > >> to be passed in a URL which deep links to a given page (bypassing the > >> need > >> to manually login)? > >> > >> I'm building an interface which is to be accessed by a cell phone > >> browser > >> and would like to avoid having to enter this stuff every time through a > >> form as text entry is a pain on these devices (but they generally allow > >> you to bookmark a URL for repeated use). > >> > >> > >> Regards > >> Marty > >> > >> --------------------------------------------------------------------- > >> To unsubscribe, e-mail: [EMAIL PROTECTED] > >> For additional commands, e-mail: [EMAIL PROTECTED] > >> > >> > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > >
