Uploaded image for project: 'Struts 2'
  1. Struts 2
  2. WW-2769

Default RolesInterceptor not well suited @portlet environment, sending 403 is forbidden in portlets

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Won't Fix
    • 2.0.11.2
    • None
    • Core Interceptors, Plugin - Portlet
    • None

    • Linux 2.6.x, Pluto 1.1.6 & Tomcat 6.0.18

    Description

      The default RolesInterceptor does handle a forbidden request in the handleRejection method with a 403 Error.
      However, sending a 403 directly to the request back to the user is forbidden in a portlet.
      The default RolesInterceptor implementation does not handle this very well.

      A workaround is to override the handleRejection method of the RolesInterceptor (and using this one instead of the default) which does throw a custom exception, which is handled by a global-exception definition which sent the user to a custom error page displaying a forbidden message.

      Attachments

        Issue Links

          relates to

          Bug - A problem which impairs or prevents the functions of the product. WW-2095 Changing portlet mode after validation errors fails

          • Major - Major loss of function.
          • Closed

          Activity

            People

              Unassigned Unassigned
              tkrah Torsten Krah
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: