Uploaded image for project: 'PUBLIC - Liferay Faces'
  1. PUBLIC - Liferay Faces
  2. FACES-2225

Simplify the syntax of <security-constraint> configuration in WEB-INF/web.xml descriptors

    Details

      Description

      Currently the security-constraint configuration in the WEB-INF/web.xml descriptors of the Liferay Faces demos have the following syntax:

      <!-- Prevent direct access to Facelet view XHTML by the userAgent (browser). -->
      <security-constraint>
      	<web-resource-collection>
      		<web-resource-name>Facelet View XHTML</web-resource-name>
      		<url-pattern>*.xhtml</url-pattern>
      	</web-resource-collection>
      	<auth-constraint>
      		<role-name>nobody</role-name>
      	</auth-constraint>
      </security-constraint>
      <security-role>
      	<role-name>nobody</role-name>
      </security-role>
      

      This task involves simplifying the syntax to the following:

      <security-constraint>
      	<display-name>Prevent direct access to Facelet XHTML</display-name>
      	<web-resource-collection>
      		<web-resource-name>Facelet XHTML</web-resource-name>
      		<url-pattern>*.xhtml</url-pattern>
      	</web-resource-collection>
      	<auth-constraint />
      </security-constraint>
      

        Attachments

          Activity

            People

            Assignee:
            neil.griffin Neil Griffin
            Reporter:
            neil.griffin Neil Griffin
            Participants of an Issue:
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:

                Packages

                Version Package
                liferay-faces-2.1.5-ga6
                liferay-faces-2.2.5-ga6
                liferay-faces-3.0.5-legacy-ga6
                liferay-faces-3.0.5-ga6
                liferay-faces-3.1.5-ga6
                liferay-faces-3.2.5-ga6
                liferay-faces-4.2.5-ga6