[jboss-user] [JBoss Portal] - Re: Unauthenticated /sec Access with CAS enabled

sohil.shah@jboss.com do-not-reply at jboss.com
Tue Dec 2 10:41:23 EST 2008

This is a valid bug. The CAS SecuredURLPattern needs to filter /sec from its list.

This fix should be available in the next release. Until then, you can override the getSecuredURLPatterns method on the Valve with this filtering


View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4193773#4193773

Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4193773

More information about the jboss-user mailing list