You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@jspwiki.apache.org by "Harry Metske (JIRA)" <ji...@apache.org> on 2008/08/10 15:21:44 UTC
[jira] Commented: (JSPWIKI-279) Cannot view content after someone
logs in
[ https://issues.apache.org/jira/browse/JSPWIKI-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12621257#action_12621257 ]
Harry Metske commented on JSPWIKI-279:
--------------------------------------
Does this problem still occur ?
If it still does, can you test if it occurs with the default jspwiki.policy ?
> Cannot view content after someone logs in
> -----------------------------------------
>
> Key: JSPWIKI-279
> URL: https://issues.apache.org/jira/browse/JSPWIKI-279
> Project: JSPWiki
> Issue Type: Bug
> Components: Authentication&Authorization
> Affects Versions: 2.6.2
> Environment: Jboss 4.2
> Reporter: Neville Attard
>
> I'm using JSP wiki as a knowledge base where only admins can enter/modify data, at least for now. Anonymous users should be able to just view the content.
> I have enabled jboss' jaas for JSPwiki
> and I set the jspwiki security policy as follows:
> grant principal com.ecyrd.jspwiki.auth.authorize.Role "All" {
> permission com.ecyrd.jspwiki.auth.permissions.PagePermission "*:*", "view";
> permission com.ecyrd.jspwiki.auth.permissions.WikiPermission "*", "editPreferences";
> permission com.ecyrd.jspwiki.auth.permissions.WikiPermission "*", "editProfile";
> permission com.ecyrd.jspwiki.auth.permissions.WikiPermission "*", "login";
> };
> grant principal com.ecyrd.jspwiki.auth.GroupPrincipal "Admin" {
> permission com.ecyrd.jspwiki.auth.permissions.AllPermission "*";
> };
> grant principal com.ecyrd.jspwiki.auth.authorize.Role "Admin" {
> permission com.ecyrd.jspwiki.auth.permissions.AllPermission "*";
> };
> Everything is fine until I log in as Admin...
> The Admin can create, view, modify pages normally...
> By anonymous users that will try to view the knowledge base will be redirected to the https login page.
> This issue remains after i log out the Admin.
> It only disappears after restarting the jboss server.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.