That's the way I've written the access control on our system.
-Original Message-
From: Christian Senk [mailto:senk.christ...@googlemail.com]
Sent: 03 June 2009 20:24
To: Tapestry users
Subject: Re: Authentification in Tapestry
We are using a custom dispatcher called "AccessControlDispat
hi peter,
can you share your code. i really don't see a quick fix :)
i could imagine to provide a decorator for the ASOManager
or for the SessionApplicationStatePersistenceStrategy
and store all the objects/fields in an custom wrapper object that
in turn is saved in the HTTPSession. which i th
On Wed, Jun 3, 2009 at 9:13 PM, Thibaut Gadiolet
wrote:
> OK, I stop using a full T5 solution to handle authentication/authorization.
> I am using ACEGI with a basic configuration, you can easily integrate it to
> your T5 projects, It's not as heavy as I thought, and it turned out to be
> very e
On Thu, Jun 4, 2009 at 3:41 AM, Thiago H. de Paula Figueiredo
wrote:
> Em Wed, 03 Jun 2009 22:07:28 -0300, Onno Scheffers
> escreveu:
>
>> I'm also using a custom dispatcher.
>> The thing I don't like about most of the current examples/solutions I've
>> seen so far is that access is allowed by d
Hi List...
I just switched from Tapestry 5.0.18 to Tapestry 5.1.0.5 and I'm
experiencing a problem with the IF component.
I'm not quite sure if this is a bug or feature, so please enlighten me *g*
For demonstration I just use the tutorial IF example
(http://tapestry.apache.org/tapestry5.1/tapes
Refer https://issues.apache.org/jira/browse/TAP5-571.
I've put my comment on this fixing too. I think the fixing is not so perfect.
DH
- Original Message -
From: "Stefan Esterer" Sent: Thursday, June 04, 2009 4:04 PM
Subject: [T 5.1] Problem with: Block parameters are only allowed direc
>i could imagine to provide a decorator for the ASOManager
A decorator would be better than my solution, but the same result: I simply use
a singleton service to sign out users, and attach a dependancy to the
ApplicationStateManager, the following method is the relevant portion of the
code that
>>The thing I don't like about most of the current examples/solutions I've
>> seen so far is that access is allowed by default if the developer forgets
>> to
>> add a specific annotation.
Exactly, the wiki examples are a good start but denied by default should be
your default policy, for a secure
I, also, can confirm it works under Tapestry 5.1.0.5 + Glassfish
Thanks
On Sat, May 30, 2009 at 11:01 AM, Juan E. Maya wrote:
> I can confirm it works under the Tapestry 5.2.0-SNAPSHOT
> Thanks a lot !!!
>
> On Sat, May 30, 2009 at 9:24 AM, Michael Gerzabek
> wrote:
>
>> Hi Thiago,
>>
>> yes it s
> Why don't you use annotations for that? Something like @PublicPage? If the
> page hasn't it, it is protected.
>
> Unless there are pages that need some internal logic to decide if they're
> public or protected (hence an interface with a isPublic() method),
> annotations are a better solution for
Can't you just use cookie.setDomain()? Set both cookies to the same
domain. Doesn't sound Tapestry- or javascript-related.
On Wed, Jun 3, 2009 at 9:37 PM, Thiago H. de Paula Figueiredo <
thiag...@gmail.com> wrote:
> Em Wed, 03 Jun 2009 21:02:06 -0300, Angelo Chen <
> angelochen...@yahoo.com.h
It does work! Thank you a lot, Robin! :)
--
Thiago
-
To unsubscribe, e-mail: users-unsubscr...@tapestry.apache.org
For additional commands, e-mail: users-h...@tapestry.apache.org
On Thu, Jun 4, 2009 at 4:04 AM, Stefan Esterer wrote:
> This works perfectly fine. Only if I add a additional I get a
> problem.
>
>
>Welcome back, ${user.firstName}
>
>
> Login /
> Register
>
>
Hi,
after updateing our application to T5.1 I was hoping for noticeable
accelleration in loading of pages. However while checking the log
output I can see that all the assets are requested from the browser on
every loading of a page for example I can see this
INFO: Request time: 0 ms, pag
t5 usually stores default cookie under www.example.com, is there a way to
let t5 store under some other names like ".example.com", this might solve
the www.example.com or http://example.com problem?
Bryan Lewis-5 wrote:
>
> Can't you just use cookie.setDomain()? Set both cookies to the same
What Tapestry is doing now in 5.1 is correct. In you example, the
will *always* render empty, and only if user is null in 5.0. 5.1
forces you to put the where it makes sense. The Tapestry 5.0
documentation should have been more specific, that you place it
*directly* inside the body of the compo
Too much noise here; that should read
"in your example, the will *always* rfender empty and only if
the user is not null in 5.0."
On Thu, Jun 4, 2009 at 11:18 AM, Howard Lewis Ship wrote:
> What Tapestry is doing now in 5.1 is correct. In you example, the
> will *always* render empty, and onl
Have you switched off production mode?
Joachim
Moritz Gmelin wrote:
Hi,
after updateing our application to T5.1 I was hoping for noticeable
accelleration in loading of pages. However while checking the log
output I can see that all the assets are requested from the browser on
every loading
Hi,
In 5.0, we did this in our AppModule to enbale applicationwide security
public void contributeMetaDataLocator(MappedConfigurationString> configuration)
{
configuration.add(MetaDataConstants.SECURE_PAGE, "true");
}
In 5.1.0.5 this seems to have no effect. I
hi,
I couldn't figured it out for streaming zip files with "StreamResponse"
interface. With my current implementation based on the Tapestry 5 site wiki
tutorial example, i stream txt file.
what i want to achieve now is to create few files in memory (eg. file1.txt &
file2.txt), zip it and return
Hi List,
I have implemented a LoginDispatcher like explained in the wiki
(http://wiki.apache.org/tapestry/Tapestry5HowToCreateADispatcher). Then I
contributed it to the MasterDispatcher's configuration with the following code:
configuration.add("LoginDispatcher", loginDispatcher, "before:PageRe
Hi nille,
i got the same problem. This part isn't good documented, look at this
snippet from the TapestryModule:
/**
* The MasterDispatcher is a chain-of-command of individual Dispatchers,
each handling (like a servlet) a particular
* kind of incoming request. RootPath Renders the
This is odd, it should be working out of the box. Perhaps the browser
is the problem here.
On Thu, Jun 4, 2009 at 11:25 AM, Joachim Van der Auwera
wrote:
> Have you switched off production mode?
Perhaps in 5.1, in dev mode we won't specify the far future expires
header. In 5.1 I'm pretty sure th
Em Thu, 04 Jun 2009 18:01:20 -0300, wesleywj2
escreveu:
hi,
Hi!
what i want to achieve now is to create few files in memory (eg.
file1.txt & file2.txt), zip itand return it to user's browser. i've
googled around and found out an API for ZipOutputStream. But i had no
idea how to imple
On Thu, Jun 4, 2009 at 15:25, Thiago H. de Paula Figueiredo
wrote:
> It does work! Thank you a lot, Robin! :)
Don't thank me, thank Michael, I'm just the messenger this time :)
--
regards,
Robin
-
To unsubscrib
Hi Christian,
Thanks for pointing me to the fact, that one can specify more than one
constraint. I have completely missed that (Should have taken a closer look to
the signature of the add-method;-)) ). In fact your suggestion solved my
problem.
Kind regards and sleep well, nillehammer
==
http:
Em Thu, 04 Jun 2009 18:18:32 -0300, Robin Helgelin
escreveu:
Don't thank me, thank Michael, I'm just the messenger this time :)
Thanks Michael for the code and Robin for bringing the good news! :)
--
Thiago H. de Paula Figueiredo
Independent Java consultant, developer, and instructor
http:
You're
Looks like my WebKit browser is the reason.
Safari 4 and Firefox 3 do not show this behaviour. I know that Safari
is a WebKit based browser but I'm talking about the WebKit browser
itself.
Tracing the element loading in Safari 4 shows the far future expires
header as expected.
We
28 matches
Mail list logo
