Hi,
Just wondering - when dealing with page authorizations, does this model
expand to component authorizations, i.e. you may visit the page, but not
certain components (redirect to another component), or you can see a
component, but with less privileges (e.g. view but not edit). In other
words, how would you deal with CRUD (create, read, update, delete)
role-based authorization on a component level?
Cheers
Erik
On 8/27/07, Robin Helgelin <[EMAIL PROTECTED]> wrote:
>
> On 8/26/07, Charles Mason <[EMAIL PROTECTED]> wrote:
> > I have made my own worker class, annotation and service. I understand
> > the acegi worker class except for the transform page part. I can't
> > work out how its managing to change the page. Its clearly modifying a
> > method but, I cant really work out how.
>
> It's the method transformPage() that actually changes the page. It's
> that last call to extendMethod(), that actually adds the call to the
> class. It attaches the class begin render and cleanup render. Acegi
> double checks things in cleanup whereas you might not need the extra
> fields injected earlier in that method.
>
> > The other thing I was struggling with is, how I actually integrate the
> > worker in to my service. I have a RequestFilter working from AppModule
> > which is executed for every request. But how do I use the worker class
> > I have just created? I could just call the transform method, but where
> > do I get the ClassTransformation object from. I assume there is some
> > correct way to apply a ComponentClassTransformWorker to a component>
>
> Yes, just contribute to the class transform worker, like this, and
> Tapestry will take care of running it on your classes.
> public static void contributeComponentClassTransformWorker(
> OrderedConfiguration<ComponentClassTransformWorker>
> configuration, SecurityChecker securityChecker) {
> configuration.add("Acegi", new AcegiWorker(securityChecker));
> }
>
> --
> regards,
> Robin
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>
