You are viewing a plain text version of this content. The canonical link for it is here.
Posted to user@turbine.apache.org by Deepak Batra <de...@yahoo.com> on 2003/09/04 19:03:15 UTC
Turning Turbine Security off alltogether
Is it doable?
If not how do we resolve the issue of new user creation without being logged in? I want new user to be able to sign up without logging in.
Deepak
---------------------------------
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
Re: Turning Turbine Security off alltogether
Posted by "Henning P. Schmiedehausen" <hp...@intermeta.de>.
Deepak Batra <de...@yahoo.com> writes:
>--0-1888208527-1062694995=:74635
>Content-Type: text/plain; charset=us-ascii
>Is it doable?
>
>If not how do we resolve the issue of new user creation without being logged in? I want new user to be able to sign up without logging in.
Yes. Use PassiveUserManager with DBSecurityService and don't use any of
the xxxSecureSessionValidators.
Regards
Henning
--
Dipl.-Inf. (Univ.) Henning P. Schmiedehausen INTERMETA GmbH
hps@intermeta.de +49 9131 50 654 0 http://www.intermeta.de/
Java, perl, Solaris, Linux, xSP Consulting, Web Services
freelance consultant -- Jakarta Turbine Development -- hero for hire
"Dominate!! Dominate!! Eat your young and aggregate! I have grotty silicon!"
-- AOL CD when played backwards (User Friendly - 200-10-15)
Re: Turning Turbine Security off alltogether
Posted by Michal Frackowiak <mi...@fotoforum.pl>.
Deepak Batra wrote:
>Is it doable?
>
>If not how do we resolve the issue of new user creation without being logged in? I want new user to be able to sign up without logging in.
>
>Deepak
>
>
and where is the problem? in my app users can freely register, with
email verification etc. no tricks in the code. perhaps your code is not
valid...
regards - michal
Re: Turning Turbine Security off alltogether
Posted by "Henning P. Schmiedehausen" <hp...@intermeta.de>.
Matt Hughes <mh...@uvic.ca> writes:
>Deepak Batra writes:
> > I am not extending the Turbine_USER. I just don't want turbine to ask me to login first before I can do anything else. I don't want turbine to ask me to login at all actually (no turbine security).
> >
>To avoid the need to login, extend VelocityScreen instead of
>VelocitySecureScreen or SecureScreen.
>It's the isAuthorized() implementation in SecureScreen that redirects
>users who aren't logged in to the login screen.
No, wrong. It's the TemplateSecureSessionValidator which does this. Don't
use a xxxSecureSessionValidator. Use TemplateSessionValidator.
Regards
Henning
>mch
> > Deepak
> >
> > Eric Pugh <ep...@upstate.com> wrote:
> > It is doable... But maybe some work needs to be done? Are you trying to be
> > able to leverage the data.getUser() capability, but not actually have
> > security? In otherwords, everybody is a passive user?
> >
> > What do you mean by signup? Does that mean insert a record in the
> > TURBINE_USER table? Or does that just mean create a user object that has a
> > firstname/lastname etc that is not perisisted?
> >
> > Eric
> >
> > > -----Original Message-----
> > > From: Deepak Batra [mailto:deepakbatra@yahoo.com]
> > > Sent: Thursday, September 04, 2003 7:03 PM
> > > To: Turbine Users List
> > > Subject: Turning Turbine Security off alltogether
> > >
> > >
> > > Is it doable?
> > >
> > > If not how do we resolve the issue of new user creation without being
> > > logged in? I want new user to be able to sign up without logging in.
> > >
> > > Deepak
> > >
> > >
> > > ---------------------------------
> > > Do you Yahoo!?
> > > Yahoo! SiteBuilder - Free, easy-to-use web site design software
> > >
> >
> >
> > ---------------------------------------------------------------------
> > To unsubscribe, e-mail: turbine-user-unsubscribe@jakarta.apache.org
> > For additional commands, e-mail: turbine-user-help@jakarta.apache.org
> >
> >
> > ---------------------------------
> > Do you Yahoo!?
> > Yahoo! SiteBuilder - Free, easy-to-use web site design software
>--
> Matt Hughes
> + mhughe@uvic.ca
> + http://susurrous.net/
> + "Were there monkeys? Some terrifying space monkeys maybe got loose?"
>---------------------------------------------------------------------
>To unsubscribe, e-mail: turbine-user-unsubscribe@jakarta.apache.org
>For additional commands, e-mail: turbine-user-help@jakarta.apache.org
--
Dipl.-Inf. (Univ.) Henning P. Schmiedehausen INTERMETA GmbH
hps@intermeta.de +49 9131 50 654 0 http://www.intermeta.de/
Java, perl, Solaris, Linux, xSP Consulting, Web Services
freelance consultant -- Jakarta Turbine Development -- hero for hire
"Dominate!! Dominate!! Eat your young and aggregate! I have grotty silicon!"
-- AOL CD when played backwards (User Friendly - 200-10-15)
RE: Turning Turbine Security off alltogether
Posted by Deepak Batra <de...@yahoo.com>.
Great. Thx.
Deepak
Matt Hughes <mh...@uvic.ca> wrote:
Deepak Batra writes:
> I am not extending the Turbine_USER. I just don't want turbine to ask me to login first before I can do anything else. I don't want turbine to ask me to login at all actually (no turbine security).
>
To avoid the need to login, extend VelocityScreen instead of
VelocitySecureScreen or SecureScreen.
It's the isAuthorized() implementation in SecureScreen that redirects
users who aren't logged in to the login screen.
mch
> Deepak
>
> Eric Pugh wrote:
> It is doable... But maybe some work needs to be done? Are you trying to be
> able to leverage the data.getUser() capability, but not actually have
> security? In otherwords, everybody is a passive user?
>
> What do you mean by signup? Does that mean insert a record in the
> TURBINE_USER table? Or does that just mean create a user object that has a
> firstname/lastname etc that is not perisisted?
>
> Eric
>
> > -----Original Message-----
> > From: Deepak Batra [mailto:deepakbatra@yahoo.com]
> > Sent: Thursday, September 04, 2003 7:03 PM
> > To: Turbine Users List
> > Subject: Turning Turbine Security off alltogether
> >
> >
> > Is it doable?
> >
> > If not how do we resolve the issue of new user creation without being
> > logged in? I want new user to be able to sign up without logging in.
> >
> > Deepak
> >
> >
> > ---------------------------------
> > Do you Yahoo!?
> > Yahoo! SiteBuilder - Free, easy-to-use web site design software
> >
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: turbine-user-unsubscribe@jakarta.apache.org
> For additional commands, e-mail: turbine-user-help@jakarta.apache.org
>
>
> ---------------------------------
> Do you Yahoo!?
> Yahoo! SiteBuilder - Free, easy-to-use web site design software
--
Matt Hughes
+ mhughe@uvic.ca
+ http://susurrous.net/
+ "Were there monkeys? Some terrifying space monkeys maybe got loose?"
---------------------------------------------------------------------
To unsubscribe, e-mail: turbine-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: turbine-user-help@jakarta.apache.org
---------------------------------
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
RE: Turning Turbine Security off alltogether
Posted by Matt Hughes <mh...@uvic.ca>.
Deepak Batra writes:
> I am not extending the Turbine_USER. I just don't want turbine to ask me to login first before I can do anything else. I don't want turbine to ask me to login at all actually (no turbine security).
>
To avoid the need to login, extend VelocityScreen instead of
VelocitySecureScreen or SecureScreen.
It's the isAuthorized() implementation in SecureScreen that redirects
users who aren't logged in to the login screen.
mch
> Deepak
>
> Eric Pugh <ep...@upstate.com> wrote:
> It is doable... But maybe some work needs to be done? Are you trying to be
> able to leverage the data.getUser() capability, but not actually have
> security? In otherwords, everybody is a passive user?
>
> What do you mean by signup? Does that mean insert a record in the
> TURBINE_USER table? Or does that just mean create a user object that has a
> firstname/lastname etc that is not perisisted?
>
> Eric
>
> > -----Original Message-----
> > From: Deepak Batra [mailto:deepakbatra@yahoo.com]
> > Sent: Thursday, September 04, 2003 7:03 PM
> > To: Turbine Users List
> > Subject: Turning Turbine Security off alltogether
> >
> >
> > Is it doable?
> >
> > If not how do we resolve the issue of new user creation without being
> > logged in? I want new user to be able to sign up without logging in.
> >
> > Deepak
> >
> >
> > ---------------------------------
> > Do you Yahoo!?
> > Yahoo! SiteBuilder - Free, easy-to-use web site design software
> >
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: turbine-user-unsubscribe@jakarta.apache.org
> For additional commands, e-mail: turbine-user-help@jakarta.apache.org
>
>
> ---------------------------------
> Do you Yahoo!?
> Yahoo! SiteBuilder - Free, easy-to-use web site design software
--
Matt Hughes
+ mhughe@uvic.ca
+ http://susurrous.net/
+ "Were there monkeys? Some terrifying space monkeys maybe got loose?"
RE: Turning Turbine Security off alltogether
Posted by Deepak Batra <de...@yahoo.com>.
I am not extending the Turbine_USER. I just don't want turbine to ask me to login first before I can do anything else. I don't want turbine to ask me to login at all actually (no turbine security).
Deepak
Eric Pugh <ep...@upstate.com> wrote:
It is doable... But maybe some work needs to be done? Are you trying to be
able to leverage the data.getUser() capability, but not actually have
security? In otherwords, everybody is a passive user?
What do you mean by signup? Does that mean insert a record in the
TURBINE_USER table? Or does that just mean create a user object that has a
firstname/lastname etc that is not perisisted?
Eric
> -----Original Message-----
> From: Deepak Batra [mailto:deepakbatra@yahoo.com]
> Sent: Thursday, September 04, 2003 7:03 PM
> To: Turbine Users List
> Subject: Turning Turbine Security off alltogether
>
>
> Is it doable?
>
> If not how do we resolve the issue of new user creation without being
> logged in? I want new user to be able to sign up without logging in.
>
> Deepak
>
>
> ---------------------------------
> Do you Yahoo!?
> Yahoo! SiteBuilder - Free, easy-to-use web site design software
>
---------------------------------------------------------------------
To unsubscribe, e-mail: turbine-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: turbine-user-help@jakarta.apache.org
---------------------------------
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
RE: Turning Turbine Security off alltogether
Posted by Eric Pugh <ep...@upstate.com>.
It is doable... But maybe some work needs to be done? Are you trying to be
able to leverage the data.getUser() capability, but not actually have
security? In otherwords, everybody is a passive user?
What do you mean by signup? Does that mean insert a record in the
TURBINE_USER table? Or does that just mean create a user object that has a
firstname/lastname etc that is not perisisted?
Eric
> -----Original Message-----
> From: Deepak Batra [mailto:deepakbatra@yahoo.com]
> Sent: Thursday, September 04, 2003 7:03 PM
> To: Turbine Users List
> Subject: Turning Turbine Security off alltogether
>
>
> Is it doable?
>
> If not how do we resolve the issue of new user creation without being
> logged in? I want new user to be able to sign up without logging in.
>
> Deepak
>
>
> ---------------------------------
> Do you Yahoo!?
> Yahoo! SiteBuilder - Free, easy-to-use web site design software
>