Hi
all,
I am pretty new to
the Wicket framework. While I am looking at the SignIn example, I found the
Page.checkAccess() was called by Page.onRender(), which I believe it is at
pretty late stage of the request process cycle, and lots of the business logic
might have gone through during WebrequstCycle.parseRequest(). Would this be a
security problem? Maybe I am missing something on the requst
lifecycle.
Thanks,
Brian
