Hi Jens On Oct 28, 2013, at 19:44 , Lenny Primak wrote:
... >> The statement above would make me think that Tapestry-Security does work for >> AJAX requests too, as onActivate() is invoked for every request for the >> page, render or action. > > The way Tapestry-Securitiy filter is set up is that it prevents any page > calls if it's not authorized, Ajax or not. > This is the correct behavior. In cases like this an "AJAX ping" can help you keep the session alive. Something along the lines of this: http://stackoverflow.com/a/12597339 Cheers, Andi. --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tapestry.apache.org For additional commands, e-mail: users-h...@tapestry.apache.org