Uploaded image for project: 'PUBLIC - Liferay Faces'
  1. PUBLIC - Liferay Faces
  2. FACES-2225

Simplify the syntax of <security-constraint> configuration in WEB-INF/web.xml descriptors

    Details

      Description

      Currently the security-constraint configuration in the WEB-INF/web.xml descriptors of the Liferay Faces demos have the following syntax:

      <!-- Prevent direct access to Facelet view XHTML by the userAgent (browser). -->
      <security-constraint>
      	<web-resource-collection>
      		<web-resource-name>Facelet View XHTML</web-resource-name>
      		<url-pattern>*.xhtml</url-pattern>
      	</web-resource-collection>
      	<auth-constraint>
      		<role-name>nobody</role-name>
      	</auth-constraint>
      </security-constraint>
      <security-role>
      	<role-name>nobody</role-name>
      </security-role>
      

      This task involves simplifying the syntax to the following:

      <security-constraint>
      	<display-name>Prevent direct access to Facelet XHTML</display-name>
      	<web-resource-collection>
      		<web-resource-name>Facelet XHTML</web-resource-name>
      		<url-pattern>*.xhtml</url-pattern>
      	</web-resource-collection>
      	<auth-constraint />
      </security-constraint>
      

        Attachments

          Activity

            People

            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Packages

                Version Package
                liferay-faces-2.1.5-ga6
                liferay-faces-2.2.5-ga6
                liferay-faces-3.0.5-legacy-ga6
                liferay-faces-3.0.5-ga6
                liferay-faces-3.1.5-ga6
                liferay-faces-3.2.5-ga6
                liferay-faces-4.2.5-ga6