[jboss-user] [JBoss Seam] - Re: security-config.xml equivalent in 2.0?
samdoyle
do-not-reply at jboss.com
Wed Oct 3 16:49:04 EDT 2007
Hi Shane,
This didn't work either.
| rich:tab switchType="page" immediate="true"
| rendered="#{s:hasPermission('super-user', null, null)}" label="Agency
| Admin" name="AgencyAdmin" action="AgencyAdmin">
| <ui:include src="menu.xhtml">
| <ui:param name="projectName" value="#{projectName}"/>
| </ui:include>
| </rich:tab>
|
This tab is rendered as part of the landing page after the user has been authenticated.
S.D.
"shane.bryzak at jboss.com" wrote : Oops, you're absolutely right. In seamspace it works because the role check is performed within the context of a (rule-based) permission check. I've fixed this in CVS so that RuleBasedIdentity now checks the security context for the existence of the role (as well as checking the subject), however if you can't test with the latest CVS version you could alternatively replace your s:hasRole() expression with an s:hasPermission() expression that simply checks for the existence of the required role.
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4091234#4091234
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4091234
More information about the jboss-user
mailing list