2 Replies Latest reply on Dec 20, 2006 9:03 AM by mythili santhanam

    Modifying security of cms admin portlet

    mythili santhanam Newbie


      As of my understanding..one needs to modify xml file of a portlet(something like helloworldobject.xml) for modifying the security constraints..
      I am not able to find any such file for the cms admin portlet.can u please help me regarding this?

      Is the folder "portal-cms.sar" in server/deploy the right place to look into?

        • 1. Re: Modifying security of cms admin portlet
          Thomas Heute Master

          In 2.6 you should look into:

          jboss-portal.sar/conf/data/default-object.xml

          In other version just look for this file (you should find 2 with the same name actually)

          • 2. Re: Modifying security of cms admin portlet
            mythili santhanam Newbie

            Thanx for ur reply..
            As said,
            I had modified the security constraint in the default-obect.xml relevant to cmsadmin portlet.
            I had created a new role and made the following change..
            <security-constraint>
            <policy-permission>
            <role-name>NewRole</role-name>
            <action-name>viewrecursive</action-name>
            </policy-permission>
            </security-constraint>

            Still..i am getting an error that "Access is denied"...when i log in as a user and try to access cms admin portlet.

            Kindly throw some light on this..

            One more query...can this security modification be done by using the "Management portlet" as said in the user guide?i tried that also and it didnt work..

            Plz le me know..

            Thanx in advance