You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@directory.apache.org by "Shawn McKinney (JIRA)" <ji...@apache.org> on 2015/03/12 16:29:38 UTC
[jira] [Created] (FC-80) Fix logout for unauthorized users
Shawn McKinney created FC-80:
--------------------------------
Summary: Fix logout for unauthorized users
Key: FC-80
URL: https://issues.apache.org/jira/browse/FC-80
Project: FORTRESS
Issue Type: Bug
Affects Versions: 1.0.0-RC39
Reporter: Shawn McKinney
Fix For: 1.0.0-RC40
fix use case where unauthorized user can't logout because they aren't authorized to hit the logout page. Add this constraint to all that page to be loaded:
<security-constraint>
<web-resource-collection>
<web-resource-name>app</web-resource-name>
<url-pattern>/wicket/bookmarkable/org.apache.directory.fortress.web.LogoutPage</url-pattern>
</web-resource-collection>
<!-- OMIT auth-constraint -->
</security-constraint>
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)