-
1. Re: configuring seam security
shane.bryzak Feb 4, 2007 8:40 PM (in response to damatrix)1) Try #{identity.loggedIn}
2) Configure exceptions.xml to redirect NotLoggedInException to your login page, you can look at seamspace for an example. -
2. Re: configuring seam security
shane.bryzak Feb 4, 2007 8:42 PM (in response to damatrix)Sorry, the xml got cut off - for 1) try this:
<restrict>#{identity.loggedIn}</restrict>
-
3. Re: configuring seam security
damatrix Feb 7, 2007 2:03 PM (in response to damatrix)I tried your suggestion but the pages is still rendering without authentication. The only consolation is that any <h:commandLink> that has roles set on them do not render which is as expected. However my pages are still exposed to unauthorised access.
Is it that i have to somehow configure seam to read from the exceptions.xml file? Any ideas? -
4. Re: configuring seam security
pmuir Feb 7, 2007 2:23 PM (in response to damatrix)This was a bug in 1.1.5, 1.1.6 (out very soon now) fixes that problem.
-
5. Re: configuring seam security
damatrix Feb 13, 2007 5:36 PM (in response to damatrix)After downloading and using seam 1.1.6, the problem did go away.
However though the login page does appear when you request a page with<restrict>#{identy.loggedIn}</restrict>
you are not redirected back to the page you requested after entering your username and password. I only receive a welcome message on the same login page again.
My second issue is that is it possible for me to use seam security with ssl? I would love to make the login secure and wonder if it's possible to configure seam security to provide secure logins. -
6. Re: configuring seam security
stu2 Feb 13, 2007 6:11 PM (in response to damatrix)Support for http/https is slated for 1.1.7 according to http://jira.jboss.com/jira/browse/JBSEAM-741
-
7. Re: configuring seam security
gavin.king Feb 13, 2007 6:12 PM (in response to damatrix)seam-gen will generate an application which does login redirection if you need an example.