You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@jspwiki.apache.org by ju...@apache.org on 2020/11/07 20:05:37 UTC
[jspwiki] 16/23: allow anonymous edits on container managed
security instances
This is an automated email from the ASF dual-hosted git repository.
juanpablo pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/jspwiki.git
commit d2b48ed30389a892cd8f1a9af6bee5182a417e54
Author: juanpablo <ju...@apache.org>
AuthorDate: Sat Nov 7 18:43:46 2020 +0100
allow anonymous edits on container managed security instances
---
.../jspwiki-it-test-cma-jdbc/src/main/webapp/WEB-INF/web.xml | 5 +++--
jspwiki-it-tests/jspwiki-it-test-cma/src/main/webapp/WEB-INF/web.xml | 5 +++--
2 files changed, 6 insertions(+), 4 deletions(-)
diff --git a/jspwiki-it-tests/jspwiki-it-test-cma-jdbc/src/main/webapp/WEB-INF/web.xml b/jspwiki-it-tests/jspwiki-it-test-cma-jdbc/src/main/webapp/WEB-INF/web.xml
index 618a204..6be2a4d 100644
--- a/jspwiki-it-tests/jspwiki-it-test-cma-jdbc/src/main/webapp/WEB-INF/web.xml
+++ b/jspwiki-it-tests/jspwiki-it-test-cma-jdbc/src/main/webapp/WEB-INF/web.xml
@@ -277,7 +277,8 @@
In particular, the restrictions below allow all users to
read documents, but only Authenticated users can comment
- on or edit them (i.e., access the Edit.jsp page).
+ on them. Anonymous edits (i.e., access the Edit.jsp page) are
+ allowed, as there is a test which does precisely that.
Users with the role Admin are the only persons who can
delete pages.
@@ -326,7 +327,7 @@
<security-constraint>
<web-resource-collection>
<web-resource-name>Authenticated area</web-resource-name>
- <url-pattern>/Edit.jsp</url-pattern>
+ <!-- <url-pattern>/Edit.jsp</url-pattern> -->
<url-pattern>/Comment.jsp</url-pattern>
<url-pattern>/Login.jsp</url-pattern>
<url-pattern>/NewGroup.jsp</url-pattern>
diff --git a/jspwiki-it-tests/jspwiki-it-test-cma/src/main/webapp/WEB-INF/web.xml b/jspwiki-it-tests/jspwiki-it-test-cma/src/main/webapp/WEB-INF/web.xml
index b876d31..085b383 100644
--- a/jspwiki-it-tests/jspwiki-it-test-cma/src/main/webapp/WEB-INF/web.xml
+++ b/jspwiki-it-tests/jspwiki-it-test-cma/src/main/webapp/WEB-INF/web.xml
@@ -208,7 +208,8 @@
In particular, the restrictions below allow all users to
read documents, but only Authenticated users can comment
- on or edit them (i.e., access the Edit.jsp page).
+ on them. Anonymous edits (i.e., access the Edit.jsp page) are
+ allowed, as there is a test which does precisely that.
Users with the role Admin are the only persons who can
delete pages.
@@ -255,7 +256,7 @@
<security-constraint>
<web-resource-collection>
<web-resource-name>Authenticated area</web-resource-name>
- <url-pattern>/Edit.jsp</url-pattern>
+ <!-- <url-pattern>/Edit.jsp</url-pattern> -->
<url-pattern>/Comment.jsp</url-pattern>
<url-pattern>/Login.jsp</url-pattern>
<url-pattern>/NewGroup.jsp</url-pattern>