Security rules in security.drl are ignored, or not activated. It logs me in even if I look for non-existing rule.
Do anything need to be done activate a specific rule? please see my configs below:
components.xml:
<drools:rule-base name="securityRules">
<rools:rule-files>/security.drl</drools:rule-files>
</drools:rule-base>
<security:identity authenticate-method="#{authenticator.authenticate}" security-rules="#{securityRules}" emember-me="true"/>
security.drl:
package Permissions;
import java.security.Principal;
import org.jboss.seam.security.PermissionCheck;
import org.jboss.seam.security.Role;
rule EditOrganisation
when
c: PermissionCheck(name == "/OrganisationEdit.xhtml", action="render")
Role(name == "system_adminX")
then
c.grant();
end;
OrganisationEdit.page.xml:
<page no-conversation-view-id="/OrganisationList.xhtml">
...
...
However, security works fine if I put following in OrganisationEdit.page.xml.
#{s:hasRole('system_adminX')}
Please provide any clues.
Thanks,