You need to configure the link address in security.xml - look for the bean
called filterInvocationInterceptor. In its configuration add a line for each
link address you want to secure. Make sure you add each line before the last
one:
/**/*.html*=ROLE_ADMIN,ROLE_USER
On the left goes the link address, on the right goes the role you want to
limit access to. Note that each role is prefixed with ROLE_
Mike.
On 10/6/07, phamvubinh <[EMAIL PROTECTED]> wrote:
>
>
> Hi all,
>
> I have some private .xhtml pages. And I don't want they can be accessed
> directly as user role by enter link address. Just admin can access them
> only. Any suggestion for me?
>
> Thanks in advance.
>
> Binh Pham
> --
> View this message in context:
> http://www.nabble.com/how-to-prevent-user-from-accessing-link-directly-as-user-role-by-enter-link-address---tf4578526s2369.html#a13070115
> Sent from the AppFuse - User mailing list archive at Nabble.com.
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>
