You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@wicket.apache.org by "Carl-Eric Menzel (JIRA)" <ji...@apache.org> on 2014/11/05 22:46:34 UTC

[jira] [Created] (WICKET-5749) Wicket-auth-roles should deal with resource authorization

Carl-Eric Menzel created WICKET-5749:
----------------------------------------

             Summary: Wicket-auth-roles should deal with resource authorization
                 Key: WICKET-5749
                 URL: https://issues.apache.org/jira/browse/WICKET-5749
             Project: Wicket
          Issue Type: Improvement
          Components: wicket-auth-roles
    Affects Versions: 7.0.0-M3
            Reporter: Carl-Eric Menzel


We now have IAuthorizationStrategy.isResourceAuthorized, which is awesome. So far, wicket-auth-roles's implementation allows all resources to go through without any possibility of configuring that.

I think the default auth strategy shipped with Wicket should support this :-)

Perhaps an additional annotation like "@AuthorizeResource"?



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)