You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@continuum.apache.org by ca...@apache.org on 2006/09/07 04:30:47 UTC

svn commit: r440949 - /maven/continuum/branches/continuum-acegi/continuum-webapp/src/main/resources/META-INF/plexus/application.xml

Author: carlos
Date: Wed Sep  6 19:30:46 2006
New Revision: 440949

URL: http://svn.apache.org/viewvc?view=rev&rev=440949
Log:
Protect user urls

Modified:
    maven/continuum/branches/continuum-acegi/continuum-webapp/src/main/resources/META-INF/plexus/application.xml

Modified: maven/continuum/branches/continuum-acegi/continuum-webapp/src/main/resources/META-INF/plexus/application.xml
URL: http://svn.apache.org/viewvc/maven/continuum/branches/continuum-acegi/continuum-webapp/src/main/resources/META-INF/plexus/application.xml?view=diff&rev=440949&r1=440948&r2=440949
==============================================================================
--- maven/continuum/branches/continuum-acegi/continuum-webapp/src/main/resources/META-INF/plexus/application.xml (original)
+++ maven/continuum/branches/continuum-acegi/continuum-webapp/src/main/resources/META-INF/plexus/application.xml Wed Sep  6 19:30:46 2006
@@ -582,6 +582,29 @@
               </configAttributes>
             </filterInvocationDefinitionSourceMapping>
             <!-- TODO protect other URLs -->
+
+            <!-- user URLs -->
+            <filterInvocationDefinitionSourceMapping>
+              <url>/user/list*</url>
+              <configAttributes>
+                <configAttribute>ROLE_admin</configAttribute>
+                <configAttribute>ROLE_manageUsers</configAttribute>
+              </configAttributes>
+            </filterInvocationDefinitionSourceMapping>
+            <filterInvocationDefinitionSourceMapping>
+              <url>/user/delete*</url>
+              <configAttributes>
+                <configAttribute>ROLE_admin</configAttribute>
+                <configAttribute>ROLE_manageUsers</configAttribute>
+              </configAttributes>
+            </filterInvocationDefinitionSourceMapping>
+            <filterInvocationDefinitionSourceMapping>
+              <url>/user/addRole*</url>
+              <configAttributes>
+                <configAttribute>ROLE_admin</configAttribute>
+                <configAttribute>ROLE_manageUsers</configAttribute>
+              </configAttributes>
+            </filterInvocationDefinitionSourceMapping>
           </mappings>
         </objectDefinitionSource>
       </configuration>