Details
-
Type:
Bug
-
Status:
Closed
-
Priority:
Major
-
Resolution: Fixed
-
Affects Version/s: security-0.4.0
-
Fix Version/s: security-0.4.1
-
Component/s: security
-
Labels:None
-
Environment:Tapestry 5.3, Glassfish 3.1.1, tapestry.secure-enabled = true
-
Number of attachments :
Description
I have a pretty simple authenticated page...
@RequiresRoles(logical = Logical.OR, value =
{ Role.LogisticsRole, Role.AccountingRole, Role.PalletsRole })
@Secure
public class TapPage
When the page is redirected to the login screen (no authentication yet) and is called from plain old http:// URL,
the login screen is shown, but it's still the http:// protocol that is used.
According to the Tapestry documentation @Scecure redirects to https:// URL if the page is already not called through https.
This works, until tynamo security gets involved and points to the login screen
This should work not only with @Secure, but also with MetaDataConstraints.SECURE_PAGE in the configuration
so a lot of pages can be secured at once.
Thanks!
Issue Links
- is related to
-
TYNAMO-110
redirect to login page for pages secured with @RequiresXXX annotations
-
Activity
| Field | Original Value | New Value |
|---|---|---|
| Assignee | Alejandro Scandroli [ ascandroli ] |
| Status | Open [ 1 ] | In Progress [ 3 ] |
| Link |
This issue is related to |
| Status | In Progress [ 3 ] | Resolved [ 5 ] |
| Fix Version/s | security-0.4.1 [ 17404 ] | |
| Resolution | Fixed [ 1 ] |
| Status | Resolved [ 5 ] | Closed [ 6 ] |
fixed together with
TYNAMO-110