Uploaded image for project: 'Wicket'
  1. Wicket
  2. WICKET-5012

Implement authorization for resources

    XMLWordPrintableJSON

    Details

    • Type: Improvement
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 6.5.0
    • Fix Version/s: 7.0.0-M1
    • Component/s: wicket
    • Labels:
      None

      Description

      Currently org.apache.wicket.authorization.IAuthorizationStrategy is focused only on Components.
      There is no way to secure an IResource mounted with WebApplication#mountResource(ResourceReference) or implicitly at /wicket/resource/com.example.MyComponent/some.res

      The API cannot be changed before Wicket 7. Until then applications can use custom root request mapper/handler to accomplish the same.

        Attachments

        1. AuthorizingRequestMapper.java
          2 kB
          Martin Tzvetanov Grigorov

          Activity

            People

            • Assignee:
              mgrigorov Martin Tzvetanov Grigorov
              Reporter:
              mgrigorov Martin Tzvetanov Grigorov
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: