[jbossseam-issues] [JBoss JIRA] Commented: (JBSEAM-1987) <restrict> in pages.xml has no effect

Pete Muir (JIRA) jira-events at lists.jboss.org
Wed Nov 7 09:37:59 EST 2007

    [ http://jira.jboss.com/jira/browse/JBSEAM-1987?page=comments#action_12386483 ] 
Pete Muir commented on JBSEAM-1987:

Please open a new jira issue for the exception handlers getting dropped.

> <restrict> in pages.xml has no effect
> -------------------------------------
>                 Key: JBSEAM-1987
>                 URL: http://jira.jboss.com/jira/browse/JBSEAM-1987
>             Project: JBoss Seam
>          Issue Type: Bug
>          Components: Security
>    Affects Versions: 2.0.0.CR1
>            Reporter: Samuel Mendenhall
>         Assigned To: Shane Bryzak
>            Priority: Critical
>             Fix For: 2.0.0.CR2
> Default seam-gen'd project
> Create a page called restricted.xhtml
> Add to pages.xml:
> <page view-id="/restricted.xhtml" login-required="true">
> 	<restrict>#{s:hasRole('doesNotExist')}</restrict>
> </page>
> Logging in will by default give the user the 'admin' role, but the user can still access the page even without the doesNotExist role.

This message is automatically generated by JIRA.
If you think it was sent incorrectly contact one of the administrators: http://jira.jboss.com/jira/secure/Administrators.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira


More information about the seam-issues mailing list