Hi I am new to Tapestry5 and I have a question about page urls:
I have a page called admin/ManageContent which I access with http://server/context-root/admin/manageContent. I have now secured the page using Acegi so only admin users can access pages that match /admin/*, so typing the above url into my browser redirects me to the login page which is great. But is there any way a malicious user could could bypass the acegi filter to access the page? I know it was possible to do something like this with T4's friendlyUrls feature. Nick
