shiro-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Les Hazlewood (JIRA)" <j...@apache.org>
Subject [jira] [Comment Edited] (SHIRO-411) Authentication not required for welcome-files in web.xml
Date Sun, 05 May 2013 00:30:17 GMT

    [ https://issues.apache.org/jira/browse/SHIRO-411?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13649221#comment-13649221
] 

Les Hazlewood edited comment on SHIRO-411 at 5/5/13 12:28 AM:
--------------------------------------------------------------

Resolving per invalid configuration.

If this is indeed a bug, please do re-open the issue.  Resolved just means that the dev team
is finished looking at the issue and feels there is a satisfactory resolution.  If you disagree
or find that there is indeed a bug or have an alternative solution suggestion, please re-open
the issue - that's perfectly acceptable.

Thanks!
                
      was (Author: lhazlewood):
    Resolving per invalid configuration.

If this is indeed a bug, please do re-open the issue.  Resolved just means that the dev team
is finished looking at the issue and feels there is a satisfactory resolution.  If you disagree
or find that there is indeed a bug, please re-open the issue - that's perfectly acceptable.

Thanks!
                  
> Authentication not required for welcome-files in web.xml
> --------------------------------------------------------
>
>                 Key: SHIRO-411
>                 URL: https://issues.apache.org/jira/browse/SHIRO-411
>             Project: Shiro
>          Issue Type: Bug
>          Components: Authorization (access control) , Realms , Web
>    Affects Versions: 1.2.1
>         Environment: Win 7, Glassfish 3.1.2.2 or Tomcat 7
>            Reporter: Peter Bočák
>              Labels: cas
>
> Sample CAS server configuration as it was described in http://shiro.apache.org/cas.html
(Complete configuration sample) doesn't require authentication for welcome files defined in
web.xml.
> INI configuration [urls]:
>     /shiro-cas = casFilter
>     /protected/** = roles[ROLE_USER]
>     /** = anon
> web.xml:
>    <welcome-file-list>
>         <welcome-file>protected/index.xhtml</welcome-file>
>     </welcome-file-list>
> When I access URL localhost:8080/shiro-cas/protected/index.xhtml shiro correctly redirects
me to CAS server for authentication.
> But if I access localhost:8080/shiro-cas/, application redirects me to specified welcome
file /protected/index.xhtml without authentication.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

Mime
View raw message