You are viewing a plain text version of this content. The canonical link for it is here.
Posted to user@shiro.apache.org by bobhoskinsbrother <ho...@hotmail.com> on 2010/11/02 18:49:16 UTC

Catch All Urls config

For some reason, I can't seem to get my config going for the wbeapp I'm
working on.

The problem is as below:

The user is logged in with the com.web.controller.active.Play:*, and
com.web.controller.active.Results:* permissions.
The app goes through the Play/** url, and then sends a redirect to the
Results/** url.  When it does so I get an unauthorized 401.  This only
happens after I've added the rule:/** = authc, perms["*"]
If I add it as /** = authc it works fine, which is telling me that the
Results/** rule isn't being exercised, and the catch all rule is being used
instead.

I basically want to give admin permissions to all but 2 pages, and don't
want to add admin permissions everywhere.

I'm using jetty btw.


		/Css/** = anon
		/Images/** = anon
		/JavaScript/** = anon
		/SignUp/** = anon
		/Login/Show/0/** = authc
		/Play/** = authc, perms["com.web.controller.active.Play:*"]
		/Results/** = authc, perms["com.web.controller.active.Results:*"]
                /** = authc, perms["*"]

-- 
View this message in context: http://shiro-user.582556.n2.nabble.com/Catch-All-Urls-config-tp5698475p5698475.html
Sent from the Shiro User mailing list archive at Nabble.com.

Re: Catch All Urls config

Posted by Les Hazlewood <lh...@apache.org>.
Hi Bob,

Glad to hear you're good to go now!

Cheers,

Les

Re: Catch All Urls config

Posted by bobhoskinsbrother <ho...@hotmail.com>.
Hi Les,

I read your post regarding this item after I posted, and subsequently
deleted the post, as I upgraded and it worked a treat
-- 
View this message in context: http://shiro-user.582556.n2.nabble.com/Re-Catch-All-Urls-config-tp5698703p5707376.html
Sent from the Shiro User mailing list archive at Nabble.com.

Re: Catch All Urls config

Posted by Les Hazlewood <lh...@apache.org>.
Hi Bob,

There was an INI definition ordering bug that may be affecting you
that was fixed for 1.1.  Can you please upgrade to 1.1.0 and try
again?  The binary artifacts are in maven central, but not yet in
Apache's mirroring system.

Please let us know how it goes!

----
Les Hazlewood
Founder, Katasoft, Inc.
Application Security Products & Professional Apache Shiro Support and Training:
http://www.katasoft.com