Announcement Announcement Module
Collapse
No announcement yet.
why not match such URI ? Page Title Module
Move Remove Collapse
This topic is closed
X
X
Conversation Detail Module
Collapse
  • Filter
  • Time
  • Show
Clear All
new posts

  • why not match such URI ?

    why not match such URI ?


    [DEBUG] [2005-02-24 14:14:31,345] net.sf.acegisecurity.intercept.web.RegExpBasedFilt erInvocationDefinitionMap - Converted URL to lowercase, from: '/xfile/menu.jsp'; to: '/xfile/menu.jsp'
    [DEBUG] [2005-02-24 14:14:31,345] net.sf.acegisecurity.intercept.web.RegExpBasedFilt erInvocationDefinitionMap - Converted URL to lowercase, from: '/xfile/menu.jsp'; to: '/xfile/menu.jsp'
    [DEBUG] [2005-02-24 14:14:31,345] net.sf.acegisecurity.intercept.web.RegExpBasedFilt erInvocationDefinitionMap - Candidate is: '/xfile/menu.jsp'; pattern is /xfile/menu.jsp ; matched=false
    [DEBUG] [2005-02-24 14:14:31,345] net.sf.acegisecurity.intercept.web.RegExpBasedFilt erInvocationDefinitionMap - Candidate is: '/xfile/menu.jsp'; pattern is /xfile/menu.jsp ; matched=false
    [DEBUG] [2005-02-24 14:14:31,345] net.sf.acegisecurity.intercept.AbstractSecurityInt erceptor - Public object - authentication not attempted
    [DEBUG] [2005-02-24 14:14:31,345] net.sf.acegisecurity.intercept.AbstractSecurityInt erceptor - Public object - authentication not attempted
    [DEBUG] [2005-02-24 14:14:31,355] net.sf.acegisecurity.intercept.web.SecurityEnforce mentFilter - Chain processed normally
    [DEBUG] [2005-02-24 14:14:31,355] net.sf.acegisecurity.intercept.web.SecurityEnforce mentFilter - Chain processed normally




    ===============================

    <bean id="filterInvocationInterceptor" class="net.sf.acegisecurity.intercept.web.FilterSe curityInterceptor">
    <property name="authenticationManager"><ref bean="authenticationManager"/></property>
    <property name="accessDecisionManager"><ref local="httpRequestAccessDecisionManager"/></property>
    <property name="objectDefinitionSource">
    <value>
    CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
    \A/secure/super.*\Z=ROLE_WE_DONT_HAVE
    \A/secure/.*\Z=ROLE_SUPERVISOR,ROLE_USER
    \A/xfile/.*\Z = ROLE_USER
    </value>
    </property>
    </bean>

  • #2
    [DEBUG] [2005-02-24 14:44:00,569] net.sf.acegisecurity.intercept.web.RegExpBasedFilt erInvocationDefinitionMap - Converted URL to lowercase, from: '/xfile/menu.jsp'; to: '/xfile/menu.jsp'
    [DEBUG] [2005-02-24 14:44:00,569] net.sf.acegisecurity.intercept.web.RegExpBasedFilt erInvocationDefinitionMap - Converted URL to lowercase, from: '/xfile/menu.jsp'; to: '/xfile/menu.jsp'
    [DEBUG] [2005-02-24 14:44:00,579] net.sf.acegisecurity.intercept.web.RegExpBasedFilt erInvocationDefinitionMap - Candidate is: '/xfile/menu.jsp'; pattern is \A/xfile/*.\Z ; matched=false
    [DEBUG] [2005-02-24 14:44:00,579] net.sf.acegisecurity.intercept.web.RegExpBasedFilt erInvocationDefinitionMap - Candidate is: '/xfile/menu.jsp'; pattern is \A/xfile/*.\Z ; matched=false
    [DEBUG] [2005-02-24 14:44:00,579] net.sf.acegisecurity.intercept.AbstractSecurityInt erceptor - Public object - authentication not attempted
    [DEBUG] [2005-02-24 14:44:00,579] net.sf.acegisecurity.intercept.AbstractSecurityInt erceptor - Public object - authentication not attempted
    [DEBUG] [2005-02-24 14:44:01,991] net.sf.acegisecurity.intercept.web.SecurityEnforce mentFilter - Chain processed normally
    [DEBUG] [2005-02-24 14:44:01,991] net.sf.acegisecurity.intercept.web.SecurityEnforce mentFilter - Chain processed normally

    Comment


    • #3
      can't visit

      [DEBUG] [2005-02-24 15:06:48,577] net.sf.acegisecurity.intercept.web.RegExpBasedFilt erInvocationDefinitionMap - Converted URL to lowercase, from: '/xfile/menu.jsp'; to: '/xfile/menu.jsp'
      [DEBUG] [2005-02-24 15:06:48,577] net.sf.acegisecurity.intercept.web.RegExpBasedFilt erInvocationDefinitionMap - Converted URL to lowercase, from: '/xfile/menu.jsp'; to: '/xfile/menu.jsp'
      [DEBUG] [2005-02-24 15:06:48,577] net.sf.acegisecurity.intercept.web.RegExpBasedFilt erInvocationDefinitionMap - Candidate is: '/xfile/menu.jsp'; pattern is \A/xfile/.*\Z ; matched=false
      [DEBUG] [2005-02-24 15:06:48,577] net.sf.acegisecurity.intercept.web.RegExpBasedFilt erInvocationDefinitionMap - Candidate is: '/xfile/menu.jsp'; pattern is \A/xfile/.*\Z ; matched=false
      [DEBUG] [2005-02-24 15:06:48,587] net.sf.acegisecurity.intercept.AbstractSecurityInt erceptor - Public object - authentication not attempted
      [DEBUG] [2005-02-24 15:06:48,587] net.sf.acegisecurity.intercept.AbstractSecurityInt erceptor - Public object - authentication not attempted
      [DEBUG] [2005-02-24 15:06:48,857] net.sf.acegisecurity.intercept.web.SecurityEnforce mentFilter - Chain processed normally
      [DEBUG] [2005-02-24 15:06:48,857] net.sf.acegisecurity.intercept.web.SecurityEnforce mentFilter - Chain processed normally

      ======================================

      <bean id="filterInvocationInterceptor" class="net.sf.acegisecurity.intercept.web.FilterSe curityInterceptor">
      <property name="authenticationManager">
      <ref bean="authenticationManager" />
      </property>

      <property name="accessDecisionManager">
      <ref local="httpRequestAccessDecisionManager" />
      </property>

      <property name="objectDefinitionSource">
      <value>
      CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
      \A/xfile/.*\Z = ROLE_USER
      </value>
      </property>
      </bean>

      Comment


      • #4
        Just a hunch.... Try removing the spaces before and after the equals sign in your objectDefinitionSource property. Please let me know if that works.

        Comment


        • #5
          I've removed the spaces . it still can't work.

          Comment


          • #6
            set

            \A/xfile/*.*\Z = ROLE_USER

            it works now.

            but, what's the matter with

            \A/xfile/*\Z = ROLE_USER

            Comment


            • #7
              I'd encourage you to use Ant Paths, as they're far more forgiving and apparent as to what they mean. See http://acegisecurity.sourceforge.net...lterinvocation.

              Comment


              • #8
                ant path?

                what 'e mean, please?

                Comment


                • #9
                  As shown in the reference guide, you can use either Regular Expressions OR Ant Paths to express your URIs. The benefit of Ant Paths is they're a lot simpler and clearer. Here's an example mapping:

                  Code:
                  <bean id="filterInvocationInterceptor" class="net.sf.acegisecurity.intercept.web.FilterSecurityInterceptor">
                    <property name="authenticationManager"><ref bean="authenticationManager"/></property>
                    <property name="accessDecisionManager"><ref bean="accessDecisionManager"/></property>
                    <property name="runAsManager"><ref bean="runAsManager"/></property>
                    <property name="objectDefinitionSource">
                      <value>
                        CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON
                        PATTERN_TYPE_APACHE_ANT
                        /secure/super/**=ROLE_WE_DONT_HAVE
                        /secure/**=ROLE_SUPERVISOR,ROLE_TELLER
                      </value>
                    </property>
                  </bean>

                  Comment

                  Working...
                  X