This content has been marked as final.
Show 3 replies
-
1. Re: Unauthenticated /sec Access with CAS enabled
iliap Dec 2, 2008 4:37 AM (in response to iliap)For reference, this is the environment:
JBoss AS 4.3.0.GA
Portal 2.6.6.GA
Postgres Plus 8.3
JDK 1.60_03
Windows XP (Dev Machines) / Red Hat Enterprise Linux Server release 5.2 (Prod) -
2. Re: Unauthenticated /sec Access with CAS enabled
soshah Dec 2, 2008 10:41 AM (in response to iliap)This is a valid bug. The CAS SecuredURLPattern needs to filter /sec from its list.
This fix should be available in the next release. Until then, you can override the getSecuredURLPatterns method on the Valve with this filtering
Thanks -
3. Re: Unauthenticated /sec Access with CAS enabled
iliap Dec 2, 2008 6:11 PM (in response to iliap)Excellent, that did the trick.
Thanks again,
Ilia