[jboss-user] [JBoss Portal] - Re: Unauthenticated /sec Access with CAS enabled
do-not-reply at jboss.com
Tue Dec 2 10:41:23 EST 2008
This is a valid bug. The CAS SecuredURLPattern needs to filter /sec from its list.
This fix should be available in the next release. Until then, you can override the getSecuredURLPatterns method on the Valve with this filtering
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4193773#4193773
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4193773
More information about the jboss-user