Restrict everything except login page

nakhnoukh Jul 18, 2007 7:50 PM

Hi, this should be straightforward but I can't figure out a simple way to do it.

I want to restrict all my xhtml pages to users of a certain role, except the login page (obviously). Is there anyway to override the restrict that I have for view-id="*".

If using the pages.xml below trying to access the login page throws a NotLoggedInException

Seam 1.2.1

<pages login-view-id="/login.xhtml">
 <page view-id="/login.xhtml">
 <navigation from-action="#{identity.login}">
 <rule if-outcome="loggedIn">
 <redirect view-id="/search.xhtml"/>
 </rule>
 </navigation>
 </page>

 <page view-id="*" login-required="true">
 <restrict>#{s:hasRole('admin')}</restrict>
 <navigation from-action="#{identity.logout}">
 <redirect view-id="/login.xhtml" />
 </navigation>
 </page>
</pages>

1. Re: Restrict everything except login page

shane.bryzak Jul 18, 2007 8:09 PM (in response to nakhnoukh)

There's an outstanding JIRA issue relating to this:

http://jira.jboss.org/jira/browse/JBSEAM-1009
Actions