[seam-issues] [JBoss JIRA] Resolved: (SEAMFACES-126) Throw some kind of unauthorized exception when auth fails, rather than returning a 401 response
Jason Porter (JIRA)
jira-events at lists.jboss.org
Thu Aug 25 18:07:17 EDT 2011
[ https://issues.jboss.org/browse/SEAMFACES-126?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Jason Porter resolved SEAMFACES-126.
------------------------------------
Assignee: Jason Porter
Fix Version/s: 3.1.0.Beta2
(was: 3.Future)
Resolution: Done
> Throw some kind of unauthorized exception when auth fails, rather than returning a 401 response
> -----------------------------------------------------------------------------------------------
>
> Key: SEAMFACES-126
> URL: https://issues.jboss.org/browse/SEAMFACES-126
> Project: Seam Faces
> Issue Type: Enhancement
> Components: Exception Handling, Security, View Configuration
> Reporter: Brian Leathem
> Assignee: Jason Porter
> Fix For: 3.1.0.Beta2
>
>
> If authorization fails, and the user is not logged in, Faces looks for a @LoginViewId to redirect to, and returns a 401 response if none is found. A similar story applies for the @AccessDeniedViewId
> It would be better to instead throw an exception, that Seam Catch can intercept. If not intercepted, this exception would eventually lead to a 401 response.
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the seam-issues
mailing list