Mar 17th, 2011, 06:28 PM
Acegi security and PKI
I'm using Acegi Security 1.0....I know, there are newer versions, but I work in a closed environment and I'm modifying an existing application that's about 4 years old.
The application is set up to use PKI certs and account information stored in the database. I need to add a new page that will require the user have PKI cert, but doesn't need an account. I tried setting the url as having a ROLE_ANONYMOUS, but when the user doesn't have a pki cert, they're not rejected and the page is displayed. If I take out the anonymous role for the url and a user has the pki, the request is rejected, but I don't know where or how to get the one page to display. I haven't worked with the acegi pkg much, just set it up for a fully protected application (different one). I think I'm just not looking at this right because it seems reasonable to do. Sorry I can't provide examples of what I have currently. If anyone can suggest some things to try, it would be much appreciated.