Raible's Wiki

Raible Designs
Wiki Home
News
Recent Changes

AppFuse

Homepage
  - Korean
  - Chinese
  - Italian
  - Japanese

QuickStart Guide
  - Chinese
  - French
  - German
  - Italian
  - Korean
  - Portuguese
  - Spanish
  - Japanese

User Guide
  - Korean
  - Chinese

Tutorials
  - Chinese
  - German
  - Italian
  - Korean
  - Portuguese
  - Spanish

FAQ
  - Korean

Latest Downloads

Other Applications

Struts Resume
Security Example
Struts Menu

Set your name in
UserPreferences


Referenced by
AppFuseAddServlet




JSPWiki v2.2.33

[RSS]


Hide Menu

AppFuseSecuritySettings


This is version 1. It is not the current version, and thus it cannot be edited.
[Back to current version]   [Restore this version]


Securtiy Settings in AppFuse

This page is intended to be a catch-all for security related configurations in AppFuse. Most of the security settings are found in one file /metadata/web/web-security.xml. By default, all actions require a login except the PasswordHintAction and SignupAction. But only actions are protected. So all static content, or other resource mappings that don't match the pattern *.html do not require a login to access.


Allowing an action to be accessed without a login.

In the web-security.xml file add an entry into the Unrestricted security constraint.
...
    <security-constraint>
        <web-resource-collection>
            <web-resource-name>Unrestricted</web-resource-name>
            <description>All users can view</description>
            <url-pattern>/passwordHint.html</url-pattern>
            <url-pattern>/signup.html</url-pattern>
            __<url-pattern>/myaction.html</url-pattern>__
            <http-method>POST</http-method>
            <http-method>GET</http-method>
        </web-resource-collection>
...


Go to top   More info...   Attach file...
This particular version was published on 06-Nov-2006 13:52:42 MST by NathanAnderson.