how to configure Seam so that login form checks users everyt

gchan Jan 28, 2008 12:29 PM

hi,

I am new to SEAM and I am using the icefaces booking example,
in jboss-seam-2.0.0.GA.
I am using jboss-4.2.2.GA and ICEfaces-1.7.0-DR3a-bin.

In the example, the home.xhtml, the login action is #{identity.login}.
If I successful logged in and go back to the page and fill out with the form
with fake info and hit the submit button again, it does not authenticate user again since user was previously logged in and session hasn't expired.

If I modify the pages.xml to
<page view-id="/home.xhtml" action="#{identity.logout}">

It sits there and keeps repeating this message.
12:17:57,562 INFO [Contexts] starting up: org.jboss.seam.security.identity
12:17:57,562 WARN [RuleBasedIdentity] no security rule base available - please install a RuleBase with the name 'securityRules' if permission checks are required.

I tried to add a security.drl but I am not sure as how to configure the file.
I can change the action in <page view-id="/home.xhtml" action="#{identity.logout}"> but I am not sure as to how I would call the identity.logout.

How do I configure home.xhtml page so that the authenticate method will always be call and the security is handle properly?

Any help is greatly appreciated. Thank you very much.

1. Re: how to configure Seam so that login form checks users ev

shane.bryzak Jan 28, 2008 4:14 PM (in response to gchan)
You really only want to call identity.logout() if you're logged in. You could try doing something like this:

@Name("securityAction") public class SecurityAction { @In Identity identity; public void logoutIfLoggedIn() { if (identity.loggedIn()) identity.logout(); } }

<page view-id="/home.xhtml" action="#{securityAction.logoutIfLoggedIn}">
Actions
2. Re: how to configure Seam so that login form checks users ev

gchan Jan 28, 2008 5:11 PM (in response to gchan)

Thank you very much!
Actions

Go to original post