You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@jspwiki.apache.org by "Harry Metske (JIRA)" <ji...@apache.org> on 2008/08/10 15:21:44 UTC

[jira] Commented: (JSPWIKI-279) Cannot view content after someone logs in

    [ https://issues.apache.org/jira/browse/JSPWIKI-279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12621257#action_12621257 ] 

Harry Metske commented on JSPWIKI-279:
--------------------------------------

Does this problem still occur ?
If it still does, can you test if it occurs with the default jspwiki.policy ?

> Cannot view content after someone logs in
> -----------------------------------------
>
>                 Key: JSPWIKI-279
>                 URL: https://issues.apache.org/jira/browse/JSPWIKI-279
>             Project: JSPWiki
>          Issue Type: Bug
>          Components: Authentication&Authorization
>    Affects Versions: 2.6.2
>         Environment: Jboss 4.2
>            Reporter: Neville Attard
>
> I'm using JSP wiki as a knowledge base where only admins can enter/modify data, at least for now. Anonymous users should be able to just view the content.
> I have enabled jboss' jaas for JSPwiki
> and I set the jspwiki security policy as follows:
> grant principal com.ecyrd.jspwiki.auth.authorize.Role "All" {
>     permission com.ecyrd.jspwiki.auth.permissions.PagePermission "*:*", "view";
>     permission com.ecyrd.jspwiki.auth.permissions.WikiPermission "*", "editPreferences";
>     permission com.ecyrd.jspwiki.auth.permissions.WikiPermission "*", "editProfile";
>     permission com.ecyrd.jspwiki.auth.permissions.WikiPermission "*", "login";
> };
> grant principal com.ecyrd.jspwiki.auth.GroupPrincipal "Admin" {
>     permission com.ecyrd.jspwiki.auth.permissions.AllPermission "*";
> };
> grant principal com.ecyrd.jspwiki.auth.authorize.Role "Admin" {
>     permission com.ecyrd.jspwiki.auth.permissions.AllPermission "*";
> };
> Everything is fine until I log in as Admin...
> The Admin can create, view, modify pages normally...
> By anonymous users that will try to view the knowledge base will be redirected to the https login page.
> This issue remains after i log out the Admin.
> It only disappears after restarting the jboss server.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.